CVE-2024-33881

Published: 2024-06-24T17:15Z

Last Modified: 2024-11-21T09:17Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

An issue was discovered in VirtoSoftware Virto Bulk File Download 5.5.44 for SharePoint 2019. The Virto.SharePoint.FileDownloader/Api/Download.ashx isCompleted method allows an NTLMv2 hash leak via a UNC share pathname in the path parameter. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt