CVE-2024-34162

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Nov 26, 2024
CWE ID 767

Summary

CVE-2024-34162: A vulnerability affects certain devices where the LDAP credentials of administrative users are concealed in the web interface. However, when LDAP authentication is set to "SIMPLE," clear-text communication between the device and LDAP server occurs, exposing LDAP passwords. For specific product information, please consult the references provided by the affected vendors.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share