Bitrix24@23.300.100 Security Vulnerabilities and Issues — Bitrix24@23.300.100 CVE List

Lucene search

BitrixBitrix2423.300.100

3 matches found

CVE•added 2024/11/04 7:15 p.m.•51 views

CVE-2024-34885

Insufficiently protected credentials in SMTP server settings in 1C-Bitrix Bitrix24 23.300.100 allows remote administrators to read SMTP accounts passwords via HTTP GET request.

6.8CVSS6.6AI score0.00103EPSS

CVE•added 2024/11/04 6:15 p.m.•49 views

CVE-2024-34887

Insufficiently protected credentials in AD/LDAP server settings in 1C-Bitrix Bitrix24 23.300.100 allows remote administrators to send AD/LDAP administrators account passwords to an arbitrary server via HTTP POST request.

6.8CVSS6.8AI score0.00103EPSS

CVE•added 2024/11/04 7:15 p.m.•49 views

CVE-2024-34891

Insufficiently protected credentials in DAV server settings in 1C-Bitrix Bitrix24 23.300.100 allows remote administrators to read Exchange account passwords via HTTP GET request.

6.8CVSS6.6AI score0.00065EPSS