CVE-2024-24681 | Yealink Configuration Encrypt Tool hard-coded key

Inserito da Angelo Barbosa | Feb 21, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in Yealink Configuration Encrypt Tool. This issue affects some unknown processing. The manipulation leads to use of hard-coded cryptographic key
.

The identification of this vulnerability is CVE-2024-24681. The attack needs to be approached within the local network. There is no exploit available.

CVE-2024-24681 | Yealink Configuration Encrypt Tool hard-coded key

Post correlati

CVE-2023-38511 | Combodo iTop up to 3.0.3/3.1.0 Dashboard Edit path traversal (GHSA-323r-chx5-m9gm)

CVE-2022-45169 | Livebox Collaboration vDesk up to 031 Push Notification createnotification redirect

CVE-2024-0978 | My Private Site Plugin up to 3.0.14 on WordPress REST API information disclosure

CVE-2024-3118 | Dreamer CMS up to 4.1.3 Attachment permission