No-IP Dynamic Update Client (DUC) v3.x uses cleartext credentials that may occur on a command line or in a file. NOTE: the vendor's position is that cleartext in /etc/default/noip-duc is recommended and is the intentional behavior.
References
Configurations
No configuration.
History
31 Oct 2024, 20:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
24 Oct 2024, 17:35
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-312 |
12 Sep 2024, 18:14
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-09-12 14:16
Updated : 2024-10-31 20:15
NVD link : CVE-2024-40457
Mitre link : CVE-2024-40457
CVE.ORG link : CVE-2024-40457
JSON object : View
Products Affected
No product.
CWE
CWE-312
Cleartext Storage of Sensitive Information