CVE-2024-25734

HIGH

WyreStorm Apollo VX20 Firmware < 1.3.58 - Unauthenticated User Enumeration via TELNET Service

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-25734. PoCs published by hyp3rlinx.

AI-analyzed exploit summary This advisory describes an account enumeration vulnerability in WyreStorm Apollo VX20 devices before 1.3.58. The TELNET service reveals valid usernames before prompting for a password, enabling brute-force attacks.

Description

An issue was discovered on WyreStorm Apollo VX20 devices before 1.3.58. The TELNET service prompts for a password only after a valid username is entered, which might make it easier for remote attackers to enumerate user accounts.

Exploits (1)

exploitdb WRITEUP

by hyp3rlinx · textremotemultiple

https://www.exploit-db.com/exploits/51814

View Code ZIP pw:eip

This advisory describes an account enumeration vulnerability in WyreStorm Apollo VX20 devices before 1.3.58. The TELNET service reveals valid usernames before prompting for a password, enabling brute-force attacks.

Classification

Writeup 100%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: WyreStorm Apollo VX20 < 1.3.58

No auth needed

Prerequisites: network access to the TELNET service on port 23

MITRE ATT&CK

T1589.001 - Credentials

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit, VDB Entry

http://packetstormsecurity.com/files/177081

Third Party Advisory

https://hyp3rlinx.altervista.org

Mailing List

http://seclists.org/fulldisclosure/2024/Feb/9

Scores

CVSS v3 7.5

EPSS 0.0630

EPSS Percentile 91.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact partial

Details

CWE

CWE-200

Status published

Products (1)

wyrestorm/apollo_vx20_firmware < 1.3.58

Published Mar 27, 2024

Tracked Since Feb 18, 2026