CVE-2024-46480 Information

Description

An NTLM hash leak in Venki Supravizio BPM up to 18.0.1 allows authenticated attackers with Application Administrator access to escalate privileges on the underlying host system.

Reference

https://github.com/Lorenzo-de-Sa/Vulnerability-Research https://github.com/Lorenzo-de-Sa/Vulnerability-Research/blob/main/CVE-2024-46480.md https://www.venki.com.br/ferramenta-bpm/supravizio/