What is CVE-2024-25735?

CVE-2024-25735 is a vulnerability in N/a. Published 2024-03-27.

Is CVE-2024-25735 known to be exploited?

3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2024-25735

An issue was discovered on WyreStorm Apollo VX20 devices before 1.3.58. Remote attackers can discover cleartext passwords via a SoftAP /device/config GET request.

EPSS: 0.904 (99.6th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

codeb0ss/CVE-2024-25735-PoC
fkie-cad/nvd-json-data-feeds
tanjiti/sec_

References

hyp3rlinx.altervista.org
packetstormsecurity.com/files/177082

Frequently asked questions

What is CVE-2024-25735?: CVE-2024-25735 is a vulnerability in N/a. Published 2024-03-27.
Is CVE-2024-25735 known to be exploited?: 3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.