exploitDog

CVE-2024-25644

Опубликовано: 12 мар. 2024

Источник: nvd

CVSS3: 5.3

EPSS Низкий

Описание

Under certain conditions SAP NetWeaver WSRM - version 7.50, allows an attacker to access information which would otherwise be restricted, causing low impact on Confidentiality with no impact on Integrity and Availability of the application.

Ссылки

https://me.sap.com/notes/3425682
Permissions Required
https://support.sap.com/en/my-support/knowledge-base/security-notes-news.html?anchorId=section_370125364
Vendor Advisory
https://me.sap.com/notes/3425682
Permissions Required
https://support.sap.com/en/my-support/knowledge-base/security-notes-news.html?anchorId=section_370125364
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:sap:netweaver:7.50:*:*:*:*:*:*:*

EPSS

Процентиль: 52%

0.00287

Низкий

5.3 Medium

CVSS3

Дефекты

CWE-732

NVD-CWE-noinfo

Связанные уязвимости

GHSA-g4w5-hhgx-9rgp

CVSS3: 5.3

github

почти 2 года назад

Under certain conditions SAP NetWeaver WSRM - version 7.50, allows an attacker to access information which would otherwise be restricted, causing low impact on Confidentiality with no impact on Integrity and Availability of the application.

EPSS

Процентиль: 52%

0.00287

Низкий

5.3 Medium

CVSS3

Дефекты

CWE-732

NVD-CWE-noinfo