CVE Vulnerabilities

CVE-2024-24279

Weak Encoding for Password

Published: Apr 08, 2024 | Modified: Jun 17, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu
root.io minimus.io echohq.com

An issue in secdiskapp 1.5.1 (management program for NewQ Fingerprint Encryption Super Speed Flash Disk) allows attackers to gain escalated privileges via vsVerifyPassword and vsSetFingerPrintPower functions.

Weakness

Obscuring a password with a trivial encoding does not protect the password.

Affected Software

Name Vendor Start Version End Version
Secdiskapp Secdiskapp 1.5.1 (including) 1.5.1 (including)

Potential Mitigations

References