CVE-2024-56428

MEDIUM

itech iLabClient <3.7.1 - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-56428. PoCs published by lisa-2905.

AI-analyzed exploit summary This PoC demonstrates an information leak vulnerability in the iLabClient where cleartext credentials are stored in a local Apache Derby database. The provided script automates the extraction of these credentials using the Derby `ij` tool.

Description

The local iLabClient database in itech iLabClient 3.7.1 allows local attackers to read cleartext credentials (from the CONFIGS table) for their servers configured in the client.

Exploits (1)

nomisec WORKING POC

by lisa-2905 · poc

https://github.com/lisa-2905/CVE-2024-56428

View Code ZIP pw:eip

This PoC demonstrates an information leak vulnerability in the iLabClient where cleartext credentials are stored in a local Apache Derby database. The provided script automates the extraction of these credentials using the Derby `ij` tool.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: iLabClient (version not specified)

No auth needed

Prerequisites: Local access to the system where iLabClient is installed · Apache Derby database files accessible · No other process accessing the database during execution

MITRE ATT&CK

T1552 - Unsecured Credentials

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Exploit, Third Party Advisory

https://github.com/lisa-2905/CVE-2024-56428

Product

https://itech-gmbh.de/#ueber-itech

Scores

CVSS v3 5.5

EPSS 0.0013

EPSS Percentile 3.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-312

Status published

Products (1)

itech-gmbh/ilabclient 3.7.1

Published May 21, 2025

Tracked Since Feb 18, 2026