Low Privileged User Vulnerability Affects Workplace Favorites
CVE-2024-44116
4.3MEDIUM
Key Information:
- Vendor
SAP
- Vendor
- CVE Published:
- 10 September 2024
What is CVE-2024-44116?
The RFC enabled function module allows a low privileged user to add any workbook to any user's workplace favourites. This vulnerability could be utilized to identify usernames and access information about targeted user's workplaces. There is low impact on integrity of the application.
Affected Version(s)
SAP NetWeaver Application Server for ABAP and ABAP Platform 700
SAP NetWeaver Application Server for ABAP and ABAP Platform 701
SAP NetWeaver Application Server for ABAP and ABAP Platform 702