Sensitive Information Exposure in Infinera TNMS Client
CVE-2024-25661

Currently unrated

Key Information:

Vendor: Infinera
Status: Transcend Network Management System
Vendor: CVE Published:; 1 October 2024

What is CVE-2024-25661?

Infinera's Transcend Network Management System (TNMS) version 19.10.3 is vulnerable due to the inadequate protection of sensitive information. The desktop application, TNMS Client, stores user passwords in cleartext within memory. This can be exploited by guest OS administrators who may access memory dumps of the application, potentially compromising numerous users' credentials. Organizations utilizing this system should take measures to secure sensitive data and prevent unauthorized access.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://www.cvcn.gov.it/cvcn/cve/CVE-2024-25661

Timeline

Vulnerability published
Oct 1, 2024
Vulnerability Reserved
Feb 9, 2024

JSON

Infinera

What is CVE-2024-25661?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

References

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.