A vulnerability was found in No-IP Dynamic Update Client 3.x. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /etc/default/noip-duc. The manipulation leads to missing encryption of sensitive data.
This vulnerability is known as CVE-2024-40457. Local access is required to approach this attack. There is no exploit available.
The real existence of this vulnerability is still doubted at the moment.