CVE-2024-56429
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2024-56429
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
itech iLabClient 3.7.1 relies on the hard-coded YngAYdgAE/kKZYu2F2wm6w== key (found in iLabClient.jar) for local users to read or write to the database.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
使用硬编码的密码学密钥
Source: NVD (National Vulnerability Database)
Vulnerability Title
itech iLabClient 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
itech iLabClient是itech公司的一款功能强大的发送方实验室数据接收软件。 itech iLabClient 3.7.1版本存在安全漏洞,该漏洞源于使用硬编码密钥YngAYdgAE/kKZYu2F2wm6w==允许本地用户读写数据库。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| itech | iLabClient | 3.7.1 | - |
II. Public POCs for CVE-2024-56429
| # | POC Description | Source Link | Shenlong Link |
|---|---|---|---|
| 1 | None | https://github.com/lisa-2905/CVE-2024-56429 | POC Details |
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2024-56429
请登录查看更多情报信息。
IV. Related Vulnerabilities
Same vendor: itech
- CVE-2017-20143
Itech Movie Portal Script film-rating.php Error sql injectio - CVE-2017-20142
Itech Movie Portal Script artist-display.php Union sql injec - CVE-2017-20141
Itech Movie Portal Script movie.php Union sql injection - CVE-2017-20140
Itech Movie Portal Script movie.php Reflected cross site scr - CVE-2017-20139
Itech Movie Portal Script show_news.php Error sql injection
Same weakness: CWE-321
- CVE-2026-8243
Industrial Application Software IAS Canias ERP JNLP Deployme - CVE-2026-6787
Usage of a hard-coded cryptographic key in WatchGuard Agent - CVE-2026-42518
Information Disclosure Vulnerability in e-Sushrut HMIS - CVE-2026-7306
Xuxueli xxl-job OpenAPI Endpoint OpenApiController.java hard - CVE-2026-32644
Milesight Cameras Use of Hard-coded Cryptographic Key
V. Comments for CVE-2024-56429
No comments yet