Potential Data Exposure via Program Execution

CVE-2024-44114

2.7LOW

Key Information

Vendor: SAP
Status: SAP Netweaver Application Server For Abap And Abap Platform
Vendor: CVE Published:; 10 September 2024

Summary

SAP NetWeaver Application Server for ABAP and ABAP Platform allow users with high privileges to execute a program that reveals data over the network. This results in a minimal impact on confidentiality of the application.

Affected Version(s)

SAP NetWeaver Application Server for ABAP and ABAP Platform = 702

SAP NetWeaver Application Server for ABAP and ABAP Platform = 731

SAP NetWeaver Application Server for ABAP and ABAP Platform = 740

CVSS V3.1

Score:

2.7

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published.
Sep 10, 2024
Vulnerability Reserved.
Aug 20, 2024

Collectors

NVD DatabaseMitre Database