Security Advisory

CVE-2024-34882

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-11-04 00:00:00

Last updated 2024-11-05 16:58:15

Assigner mitre

State PUBLISHED

Description

Insufficiently protected credentials in SMTP server settings in 1C-Bitrix Bitrix24 23.300.100 allows remote administrators to send SMTP account passwords to an arbitrary server via HTTP POST request.

← Browse all CVEs View on cve.org ↗