CVE-2024-37393

HIGH EXPLOITED NUCLEI

SecurEnvoy MFA < 9.4.514 - Unauthenticated LDAP Injection via DESKTOP Service

Title source: llm

Exploitation Summary

CVE-2024-37393 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including noways-io. A Nuclei detection template is also available.

AI-analyzed exploit summary The repository contains a Python script that checks for LDAP injection vulnerability (CVE-2024-37393) in SecurEnvoy MFA by sending crafted requests and analyzing responses. It does not exploit the vulnerability but detects its presence.

Description

Multiple LDAP injections vulnerabilities exist in SecurEnvoy MFA before 9.4.514 due to improper validation of user-supplied input. An unauthenticated remote attacker could exfiltrate data from Active Directory through blind LDAP injection attacks against the DESKTOP service exposed on the /secserver HTTP endpoint. This may include ms-Mcs-AdmPwd, which has a cleartext password for the Local Administrator Password Solution (LAPS) feature.

Exploits (1)

nomisec SCANNER 1 stars

by noways-io · poc

https://github.com/noways-io/securenvoy-cve-2024-37393

View Code ZIP pw:eip

The repository contains a Python script that checks for LDAP injection vulnerability (CVE-2024-37393) in SecurEnvoy MFA by sending crafted requests and analyzing responses. It does not exploit the vulnerability but detects its presence.

Classification

Scanner 95%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: SecurEnvoy MFA 9.4.513

No auth needed

Prerequisites: Network access to the target SecurEnvoy MFA server

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Nuclei Templates (1)

SecurEnvoy Two Factor Authentication - LDAP Injection

CRITICALVERIFIEDby s4e-io

Shodan: title:"SecurEnvoy"

FOFA: title="SecurEnvoy"

References (3)

Core 3

Core References

Exploit

https://learn.microsoft.com/en-us/openspecs/windows_protocols/ms-ada2/ad2ce8fa-42a0-4371-ad18-5d1d1c488b22

Product

https://securenvoy.com/support/

Exploit, Third Party Advisory

https://www.optistream.io/blogs/tech/securenvoy-cve-2024-37393

Scores

CVSS v3 7.5

EPSS 0.0330

EPSS Percentile 86.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact total

Details

VulnCheck KEV 2025-11-12

CWE

CWE-319 CWE-89

Status published

Products (1)

securenvoy/multi-factor_authentication_solutions < 9.4.514

Published Jun 10, 2024

Tracked Since Feb 18, 2026