CVE-2024-25661

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-25661
In Infinera TNMS (Transcend Network Management System) 19.10.3, cleartext storage of sensitive information in memory of the desktop application TNMS Client allows guest OS administrators to obtain various users' passwords by reading memory dumps of the desktop application.

7.7 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.1 / Impact : 6.0

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required HIGH

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope CHANGED

References
Link Resource
https://www.cvcn.gov.it/cvcn/cve/CVE-2024-25661
Configurations

No configuration.

History

No history.

Information

Published : 2024-10-01 15:15

Updated : 2024-10-04 13:51

NVD link : CVE-2024-25661

Mitre link : CVE-2024-25661

CVE.ORG link : CVE-2024-25661

JSON object : View

Products Affected

No product.

CWE
CWE-312

Cleartext Storage of Sensitive Information