8 matches found
CVE-2024-22903
Vinchin Backup & Recovery v7.2 was discovered to contain an authenticated remote code execution RCE vulnerability via the deleteUpdateAPK function...
The vulnerability of the deleteUpdateAPK() function in the Vinchin Backup & Recovery software allows a hacker to execute arbitrary commands.
The vulnerability of the deleteUpdateAPK function in the Vinchin Backup & Recovery software relates to the lack of measures taken to neutralize special elements used in the operating system’s command when processing the filename parameter. Exploiting this vulnerability allows a malicious actor to...
CVE-2024-22903
Vinchin Backup & Recovery v7.2 was discovered to contain an authenticated remote code execution RCE vulnerability via the deleteUpdateAPK function...
CVE-2024-22903
Vinchin Backup & Recovery v7.2 was discovered to contain an authenticated remote code execution RCE vulnerability via the deleteUpdateAPK function...
Remote code execution
Vinchin Backup & Recovery v7.2 was discovered to contain an authenticated remote code execution RCE vulnerability via the deleteUpdateAPK function...
CVE-2024-22903
Vinchin Backup & Recovery v7.2 was discovered to contain an authenticated remote code execution RCE vulnerability via the deleteUpdateAPK function...
CVE-2024-22903
Vinchin Backup & Recovery v7.2 was discovered to contain an authenticated remote code execution RCE vulnerability via the deleteUpdateAPK function...
PT-2024-1552 · Vinchin · Vinchin Backup & Recovery
Name of the Vulnerable Software and Affected Versions: Vinchin Backup & Recovery version 7.2 Description: The issue is related to an authenticated remote code execution RCE vulnerability via the deleteUpdateAPK function. This vulnerability can be exploited by sending specially crafted POST...