CVE-2024-25654

CVE-2024-25654 · Severity

Insecure permissions for log files of AVSystem Unified Management Platform (UMP) 23.07.0.16567~LTS allow members (with local access to the UMP application server) to access credentials to authenticate to all services, and to decrypt sensitive data stored in the database.

Learn more about our Cis Benchmark Audit For Server Software.