Server-side file exposure vulnerability
CVE-2024-47580

6.8MEDIUM

Key Information:

Vendor: SAP
Status: SAP Netweaver As For Java (adobe Document Services)
Vendor: CVE Published:; 10 December 2024

Summary

An attacker authenticated as an administrator can use an exposed webservice to create a PDF with an embedded attachment. By specifying the file to be an internal server file and subsequently downloading the generated PDF, the attacker can read any file on the server with no effect on integrity or availability.

Affected Version(s)

SAP NetWeaver AS for JAVA (Adobe Document Services) ADSSSAP 7.50

References

https://me.sap.com/notes/3536965

https://url.sap/sapsecuritypatchday

CVSS V3.1

Score:

6.8

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Dec 10, 2024
Vulnerability Reserved
Sep 27, 2024