VYPR
Medium severity6.5NVD Advisory· Published Mar 18, 2024· Updated Apr 15, 2026

CVE-2024-25655

CVE-2024-25655

Description

Insecure storage of LDAP passwords in the authentication functionality of AVSystem Unified Management Platform (UMP) 23.07.0.16567~LTS allows members (with read access to the application database) to decrypt the LDAP passwords of users who successfully authenticate to web management via LDAP.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.

CVE-2024-25655 · Medium · VYPR