Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-25661

In Infinera TNMS (Transcend Network Management System) 19.10.3, cleartext storage of sensitive information in memory of the desktop application TNMS Client allows guest OS administrators to obtain various users' passwords by reading memory dumps of the desktop application.

Published

2024-10-01T15:15:07.740

Last Modified

2025-07-10T21:02:52.017

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 7.7 (HIGH)

Weaknesses

Type: Secondary
CWE-312

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	nokia	transcend_network_management_system	19.10.3	Yes

References

https://www.cvcn.gov.it/cvcn/cve/CVE-2024-25661 Third Party Advisory ([email protected])