CVE-2024-51984 – Apache Device Passcode Authentication Service Password Disclosure Vulnerability

June 25, 2025

CVE ID : CVE-2024-51984

Published : June 25, 2025, 8:15 a.m. | 2 hours, 42 minutes ago

Description : An authenticated attacker can reconfigure the target device to use an external service (such as LDAP or FTP) controlled by the attacker. If an existing password is present for an external service, the attacker can force the target device to authenticate to an attacker controlled device using the existing credentials for that external service. In the case of an external LDAP or FTP service, this will disclose the plaintext password for that external service to the attacker.

Severity: 6.8 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-41255 – Cyberduck and Mountain Duck TLS Certificate Pinning Vulnerability

Next Article CVE-2024-51983 – Cisco Web Services Crash DoS

CodeSOD: A Unique Way to Primary Key

BrowserStack launches Figma plugin for detecting accessibility issues in design phase

Parasoft brings agentic AI to service virtualization in latest release

Node.js vs. Python for Backend: 7 Reasons C-Level Leaders Choose Node.js Talent

The best CRM software with email marketing in 2025: Expert tested and reviewed

This multi-port car charger can power 4 gadgets at once – and it’s surprisingly cheap

I’m a wearables editor and here are the 7 Pixel Watch 4 rumors I’m most curious about

8 ways I quickly leveled up my Linux skills – and you can too

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

Zero Trust & Cybersecurity Mesh: Your Org’s Survival Guide

Execute Ping Commands and Get Back Structured Data in PHP

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

“I don’t think I changed his mind” — NVIDIA CEO comments on H20 AI GPU sales resuming in China following a meeting with President Trump

Galaxy Z Fold 7 review: Six years later — Samsung finally cracks the foldable code

CVE-2024-51984 – Apache Device Passcode Authentication Service Password Disclosure Vulnerability

CVE-2025-44658 – Netgear RAX30 PHP-FPM Misconfigured Extension Bypass Vulnerability

CVE-2025-7393 – Drupal Mail Login Authentication Bypass

Perficient Colleagues Are Forging the Future

The Last of Us voice actor’s new role is a Mickey Mouse-like detective — I think the rubber hose animation perfectly fits this FPS Boomer Shooter

CVE-2025-5611 – CodeAstro Real Estate Management System SQL Injection Vulnerability

SVAR Svelte Filter: Visual Query Builder for Data-Driven Apps

CBI Shuts Down £390K U.K. Tech Support Scam, Arrests Key Operatives in Noida Call Center

How your Pixel phone can now help you shoot expert-level photos and video

CVE-2025-44091 – Yangyouwang Crud XSS

Supplier order management: How a furniture retailer automated order confirmation processing

CVE-2024-51984 – Apache Device Passcode Authentication Service Password Disclosure Vulnerability

Related Posts