CVE-2024-45832
Ossur Mobile Logic Application Use of Hard-coded Credentials
Vexday Risk Score
8Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 2EPSS 0.3%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
17 Jan 2025Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Hard-coded credentials were included as part of the application binary.
These credentials served as part of the application authentication flow
and communication with the mobile application. An attacker could access
unauthorized information.
CVSS:4.0/AV:P/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:L/SC:L/SI:H/SA:N
Affected products
Ossur · Mobile Logic ApplicationWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →