← Back to CVE List

CVE-2024-34882

Published: 2024-11-04T18:15Z
Last Modified: 2024-11-06T19:28Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
Insufficiently protected credentials in SMTP server settings in 1C-Bitrix Bitrix24 23.300.100 allows remote administrators to send SMTP account passwords to an arbitrary server via HTTP POST request. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt