CVE-2024-28807

Summary

CVE-2024-28807 is a newly disclosed vulnerability affecting Infinera's hiT 7300 5.60.50 desktop management application. The issue permits guest OS administrators to access cleartext sensitive information, specifically user passwords, stored in the memory of the @CT application. This vulnerability poses a significant risk, as unauthorized access to passwords can lead to unauthorized system access and potential data breaches. The impacted application is used in the management of Infinera's optical networking equipment, making this a critical issue for organizations relying on this technology. Organizations using the affected version of the hiT 7300 5.60.50 @CT desktop management application are strongly advised to update to a patched version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.