Lucene search

CVE-2024-33881

🗓️ 24 Jun 2024 17:10:15Reported by mitreType

cve🔗 web.nvd.nist.gov👁 64 Views🌐 WEB

Issue in VirtoSoftware Bulk File Download for SharePoin

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 3
Vulnrichment	CVE-2024-33881	24 Jun 202400:00	–	vulnrichment
NVD	CVE-2024-33881	24 Jun 202417:15	–	nvd
Cvelist	CVE-2024-33881	24 Jun 202400:00	–	cvelist

Nvd

Vulnrichment

Node

virtosoftware sharepoint_bulk_file_downloadMatch5.5.44

AND

microsoft sharepoint_serverMatch2019

Source	Link
docs	www.docs.virtosoftware.com/v/virto-security-frequently-asked-questions-faq
download	www.download.virtosoftware.com/Manuals/nu_ncsc_virto_one_bulk_file_download_v5.4.4_pt_disclosure.pdf

Parameter	Position	Path	Description	CWE
isCompleted	path	/Virto.SharePoint.FileDownloader/Api/Download.ashx	NTLMv2 hash leak via a UNC share pathname in the path parameter.	CWE-22, CWE-200

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

24 Jun 2024 17:15Current

7.1High risk

Vulners AI Score7.1

CVSS35.3

EPSS0.0024

SSVC