Medium severity6.5NVD Advisory· Published Mar 18, 2024· Updated Apr 15, 2026
CVE-2024-25655
CVE-2024-25655
Description
Insecure storage of LDAP passwords in the authentication functionality of AVSystem Unified Management Platform (UMP) 23.07.0.16567~LTS allows members (with read access to the application database) to decrypt the LDAP passwords of users who successfully authenticate to web management via LDAP.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: = 23.07.0.16567~LTS
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.