Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-3543

Use of reversible password encryption algorithm allows attackers to decrypt passwords. Sensitive information can be easily unencrypted by the attacker, stolen credentials can be used for arbitrary actions to corrupt the system.

Published

2024-05-02T14:15:10.573

Last Modified

2025-02-10T15:16:45.233

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 6.4 (MEDIUM)

Weaknesses

Type: Secondary
CWE-257
Type: Primary
CWE-522

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	progress	loadmaster	< 7.2.54.10	Yes
Application	progress	loadmaster	< 7.2.59.4	Yes
Application	progress	loadmaster	7.2.48.11	Yes

References

https://kemptechnologies.com/ Product ([email protected])
https://support.kemptechnologies.com/hc/en-us/articles/25724813518605-ECS-Connection-Manager-Security-Vulnerabilities-CVE-2024-3544-and-CVE-2024-3543 Product ([email protected])
https://kemptechnologies.com/ Product (af854a3a-2127-422b-91ae-364da2661108)
https://support.kemptechnologies.com/hc/en-us/articles/25724813518605-ECS-Connection-Manager-Security-Vulnerabilities-CVE-2024-3544-and-CVE-2024-3543 Product (af854a3a-2127-422b-91ae-364da2661108)