Security Advisory

CVE-2024-1344

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-02-19 11:19:39

Last updated 2024-08-19 14:21:03

Assigner INCIBE

State PUBLISHED

Description

Encrypted database credentials in LaborOfficeFree affecting version 19.10. This vulnerability allows an attacker to read and extract the username and password from the database of LOF_service.exe and LaborOfficeFree.exe located in the %programfiles(x86)%LaborOfficeFree directory. This user can log in remotely and has root-like privileges.

← Browse all CVEs View on cve.org ↗