Unrated severityNVD Advisory· Published Nov 4, 2024· Updated Nov 5, 2024
CVE-2024-34882
CVE-2024-34882
Description
Insufficiently protected credentials in SMTP server settings in 1C-Bitrix Bitrix24 23.300.100 allows remote administrators to send SMTP account passwords to an arbitrary server via HTTP POST request.
Affected products
2- 1C-Bitrix/Bitrix24description
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- bitrix24.commitre
News mentions
0No linked articles in our index yet.