CVE-2023-45498

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Oct 27, 2023
Updated: Dec 21, 2023
CWE ID 77

Summary

CVE-2023-45498: VinChin Backup & Recovery versions 5.0, 6.0, 6.7, and 7.0 have been identified with a command injection vulnerability. An attacker could exploit this issue by injecting malicious commands into the software, potentially leading to unauthorized system access, data theft, or other malicious activities. Users are strongly advised to apply the available patches to mitigate this risk. This vulnerability could have severe consequences, making it essential for users to prioritize updating their software as soon as possible.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share