Unauthorized Remote Access to System Configurations via Information Leakage Vulnerability
CVE-2024-8777
7.5HIGH
What is CVE-2024-8777?
The OMFLOW product from The SYSCOM Group has a vulnerability that enables unauthorized remote attackers to access sensitive system configurations. This vulnerability is particularly concerning when LDAP authentication is enabled, as it allows these attackers to potentially retrieve plaintext credentials stored within the system. This represents a significant risk for users relying on OMFLOW for critical operations, emphasizing the importance of prompt updates and security measures.
Affected Version(s)
OMFLOW 1.1.6.0 <= 1.2.1.2