2 matches found
CVE-2022-35866
This vulnerability allows remote attackers to bypass authentication on affected installations of Vinchin Backup and Recovery 6.5.0.17561. Authentication is not required to exploit this vulnerability. The specific flaw exists within the configuration of the MySQL server. The server uses a hard-cod...
CVE-2022-35866
Vinchin Backup and Recovery 6.5.0.17561 is affected by CVE-2022-35866. A remote attacker can bypass authentication due to a MySQL server configuration that uses a hard-coded administrator password, enabling unauthenticated access with total impact on confidentiality, integrity, and availability. ...