Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2024-25735

🗓️ 27 Mar 2024 00:00:00Reported by mitreType 
cve
 cve🔗 web.nvd.nist.gov👁 120 Views🌐 WEB

WyreStorm Apollo VX20 cleartext password vulnerability

Related
Detection
Refs
Paths
ReporterTitlePublishedViews
Family
0day.today		WyreStorm Apollo VX20 Credential Disclosure Vulnerability
12 Feb 202400:00
zdt
BDU FSTEC		The vulnerability of the video bar and switch for Apollo VX20 video conferencing systems lies in the lack of encryption for confidential data and improper handling of exclusive conditions, allowing intruders to obtain passwords in an open form.
14 Jun 202400:00
bdu_fstec
Circl		CVE-2024-25735
14 Feb 202408:56
circl
CNNVD		WyreStorm Apollo VX20 Security Vulnerability
26 Feb 202400:00
cnnvd
Cvelist		CVE-2024-25735
27 Mar 202400:00
cvelist
Exploit DB		Wyrestorm Apollo VX20 < 1.3.58 - Incorrect Access Control 'Credentials Disclosure'
26 Feb 202400:00
exploitdb
Nuclei		WyreStorm Apollo VX20 - Information Disclosure
27 Jun 202603:01
nuclei
NVD		CVE-2024-25735
27 Mar 202403:15
nvd
OSV		CVE-2024-25735
27 Mar 202403:15
osv
Packet Storm		WyreStorm Apollo VX20 Credential Disclosure
12 Feb 202400:00
packetstorm
Rows per page
NVD
Vulnrichment
Node
wyrestormapollo_vx20_firmwareRange<1.3.58
AND
wyrestormapollo_vx20Match-
ParameterPositionPathDescriptionCWE
softAp.passwordpath/device/configCleartext credentials disclosure via /device/config GET on WyreStorm Apollo VX20 (pre-1.3.58)CWE-319

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
17 Jun 2026 07:16Current
6.8Medium risk
Vulners AI Score6.8
CVSS 3.19.1
EPSS0.50622
SSVC
CWE-319In Wild
cve-2024-25735wyrestorm apollo vx20cleartext passwordsvulnerabilitynvdremote attackersoftapdevice configuration
120