CVE-2024-34883 Information

Description

Insufficiently protected credentials in DAV server settings in 1C-Bitrix Bitrix24 23.300.100 allow remote administrators to read proxy-server accounts passwords via HTTP GET request.

Reference

http://bitrix24.com https://github.com/DrieVlad/BitrixVulns