CVE-2024-52881

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Feb 7, 2025

Updated: Feb 10, 2025

CWE ID 321

Summary

CVE-2024-52881 is a newly disclosed vulnerability affecting AudioCodes One Voice Operations Center (OVOC) versions prior to 8.4.582. This issue stems from the utilization of a hard-coded key within the software. An attacker who gains access to the topology file can exploit this vulnerability to decrypt sensitive data, including passwords, putting organizational networks at risk. The usage of hard-coded keys in critical infrastructure software increases the susceptibility to decryption attacks, necessitating timely updates to mitigate this issue.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/0nZNGK
https://www.cve.org/CVERecord?id=CVE-2024-52881
https://nvd.nist.gov/vuln/detail/CVE-2024-52881

Back to Vulnerability Database

CVE-2024-52881

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations