CVE-2024-25654
- Reference to the description:
- Description:
- Insecure permissions for log files of AVSystem Unified Management Platform (UMP) 23.07.0.16567~LTS allow members (with local access to the UMP application server) to access credentials to authenticate to all services, and to decrypt sensitive data stored in the database.
- Last updated date:
- 03/14/2025
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 02/27/2025
- Reference url to background