Medium severity6.5NVD Advisory· Published May 21, 2024· Updated Jun 17, 2026
CVE-2024-31840
CVE-2024-31840
Description
An issue was discovered in Italtel Embrace 1.6.4. The web application inserts cleartext passwords in the HTML source code. An authenticated user is able to edit the configuration of the email server. Once the user access the edit function, the web application fills the edit form with the current credentials for the email account, including the cleartext password.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: =1.6.4
Patches
Vulnerability mechanics
References
1- www.gruppotim.it/it/footer/red-team.htmlnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.