CVE-2024-52884
Published: 07 February 2025
Description
An issue was discovered in AudioCodes Mediant Session Border Controller (SBC) before 7.40A.501.841. Due to the use of weak password obfuscation/encryption, an attacker with access to configuration exports (INI) is able to decrypt the passwords.
Security Summary
CVE-2024-52884 affects AudioCodes Mediant Session Border Controller (SBC) software in versions before 7.40A.501.841. The vulnerability arises from weak password obfuscation and encryption mechanisms used in configuration exports, specifically INI files. This issue, published on 2025-02-07, is categorized under CWE-327 (Broken or Risky Cryptographic Algorithm) and carries a CVSS v3.1 base score of 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N), indicating high confidentiality impact with low attack complexity over the network.
An attacker with access to the INI configuration export files can exploit this flaw to decrypt the obfuscated passwords stored within them. No privileges, user interaction, or special conditions beyond obtaining the export are required, enabling remote exploitation if the files are accessible via misconfigurations, theft, or other means.
The SYSS advisory (SYSS-2024-078) at https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2024-078.txt and AudioCodes Session Border Controllers product page at https://www.audiocodes.com/solutions-products/products/session-border-controllers-sbcs provide additional details on the vulnerability.
Details
- CWE(s)