Remote Code Execution Vulnerability in Vinchin Backup & Recovery
CVE-2024-22900
8.8HIGH
What is CVE-2024-22900?
Vinchin Backup & Recovery v7.2 is vulnerable to an authenticated remote code execution (RCE) issue through the setNetworkCardInfo function. This vulnerability allows attackers with valid credentials to execute arbitrary code on the affected system. If exploited, it can lead to unauthorized access and significant security breaches. Users of Vinchin Backup & Recovery should prioritize applying patches and security updates to mitigate potential risks inherent in this vulnerability.
