← back
CVE-2024-56428

CVE-2024-56428

CVSS 5.5 MEDIUMEPSS 0.1%CWE-312
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 5.5EPSS 0.1%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
21 May 2025Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
The local iLabClient database in itech iLabClient 3.7.1 allows local attackers to read cleartext credentials (from the CONFIGS table) for their servers configured in the client.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/lisa-2905/CVE-2024-56428https://itech-gmbh.de/#ueber-itech