Vulnerability CVE-2024-22899

Vulnerability CVE-2024-22899

Published: 2024-02-02

Description:

Vinchin Backup & Recovery v7.2 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the syncNtpTime function.

References:

http://vinchin.com

https://seclists.org/fulldisclosure/2024/Jan/29

https://blog.leakix.net/2024/01/vinchin-backup-rce-chain/

Copyright 2026, cxsecurity.com