{"vulnerability": "CVE-2024-3488", "sightings": [{"uuid": "d12f7c41-2bfb-4150-a8b6-6600ecb4cb30", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-34882", "type": "seen", "source": "https://t.me/cvedetector/9777", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-34882 - Bitrix24 SMTP Password Exposure Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-34882 \nPublished : Nov. 4, 2024, 6:15 p.m. | 38\u00a0minutes ago \nDescription : Insufficiently protected credentials in SMTP server settings in 1C-Bitrix Bitrix24 23.300.100 allows remote administrators to send SMTP account passwords to an arbitrary server via HTTP POST request. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"04 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-04T20:18:02.000000Z"}, {"uuid": "2e7b72a5-089b-4d11-a3c7-a69e0fe1ee28", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-34885", "type": "seen", "source": "https://t.me/cvedetector/9784", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-34885 - Bitrix24 SMTP Server Unprotected Credentials Exposure\", \n  \"Content\": \"CVE ID : CVE-2024-34885 \nPublished : Nov. 4, 2024, 7:15 p.m. | 38\u00a0minutes ago \nDescription : Insufficiently protected credentials in SMTP server settings in 1C-Bitrix Bitrix24 23.300.100 allows remote administrators to read SMTP accounts passwords via HTTP GET request. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"04 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-04T21:08:13.000000Z"}, {"uuid": "dd4ab581-b7fa-43b1-804d-47005e7412af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-34887", "type": "seen", "source": "https://t.me/cvedetector/9779", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-34887 - Bitrix24 AD/LDAP Server Credentials Exposure\", \n  \"Content\": \"CVE ID : CVE-2024-34887 \nPublished : Nov. 4, 2024, 6:15 p.m. | 38\u00a0minutes ago \nDescription : Insufficiently protected credentials in AD/LDAP server settings in 1C-Bitrix Bitrix24 23.300.100 allows remote administrators to send AD/LDAP administrators account passwords to an arbitrary server via HTTP POST request. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"04 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-04T20:18:04.000000Z"}, {"uuid": "616a1d35-1da9-40a1-b142-222cae037b82", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-34883", "type": "seen", "source": "https://t.me/cvedetector/9778", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-34883 - Bitrix24 Credential Exposure\", \n  \"Content\": \"CVE ID : CVE-2024-34883 \nPublished : Nov. 4, 2024, 6:15 p.m. | 38\u00a0minutes ago \nDescription : Insufficiently protected credentials in DAV server settings in 1C-Bitrix Bitrix24 23.300.100 allow remote administrators to read proxy-server accounts passwords via HTTP GET request. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"04 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-04T20:18:03.000000Z"}, {"uuid": "a2062473-2443-46fc-9ada-57061514b741", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-34885", "type": "seen", "source": "https://gist.github.com/sergkurilenko/55cbff41f8ef423d7ee6fc274e5e79a9", "content": "", "creation_timestamp": "2026-04-27T20:30:12.000000Z"}]}