CVE-2024-33880 | VirtoSoftware Virto Bulk File Download for SharePoint 2019 5.5.44 Download.ashx information disclosure

Posted by Angelo Barbosa | Jun 24, 2024 | CVE

A vulnerability was found in VirtoSoftware Virto Bulk File Download for SharePoint 2019 5.5.44. It has been declared as problematic. This vulnerability affects unknown code of the file Virto.SharePoint.FileDownloader/Api/Download.ashx?action=archive. The manipulation leads to information disclosure.

This vulnerability was named CVE-2024-33880. Access to the local network is required for this attack to succeed. There is no exploit available.

CVE-2024-33880 | VirtoSoftware Virto Bulk File Download for SharePoint 2019 5.5.44 Download.ashx information disclosure

Related Posts

CVE-2024-20052 | MediaTek MT8798 Flashc information disclosure (ALPS08541757)

CVE-2024-3640 | Rockwell Automation Factory Talk Remote Access up to 13.5.0.174 FTRA Installer Package unquoted search path (icsa-24-135-01)

CVE-2024-46683 | Linux Kernel up to 6.10.7 DRM use after free (10081b0b0ed2/730b72480e29)

CVE-2023-43996 | mini-app on Line 13.6.1 Channel Access Token information disclosure