Security Advisory

CVE-2024-34891

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-11-04 00:00:00

Last updated 2024-11-05 16:43:46

Assigner mitre

State PUBLISHED

Description

Insufficiently protected credentials in DAV server settings in 1C-Bitrix Bitrix24 23.300.100 allows remote administrators to read Exchange account passwords via HTTP GET request.

← Browse all CVEs View on cve.org ↗