exploitDog

CVE-2024-28163

Опубликовано: 12 мар. 2024

Источник: nvd

CVSS3: 5.3

EPSS Низкий

Описание

Under certain conditions, Support Web Pages of SAP NetWeaver Process Integration (PI) - versions 7.50, allows an attacker to access information which would otherwise be restricted, causing low impact on Confidentiality with no impact on Integrity and Availability of the application.

Ссылки

https://me.sap.com/notes/3434192
Permissions Required
https://support.sap.com/en/my-support/knowledge-base/security-notes-news.html?anchorId=section_370125364
Vendor Advisory
https://me.sap.com/notes/3434192
Permissions Required
https://support.sap.com/en/my-support/knowledge-base/security-notes-news.html?anchorId=section_370125364
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:sap:netweaver_process_integration:7.50:*:*:*:*:*:*:*

EPSS

Процентиль: 52%

0.00287

Низкий

5.3 Medium

CVSS3

Дефекты

CWE-732

CWE-732

Связанные уязвимости

GHSA-v4f5-j5hc-8mj3

CVSS3: 5.3

github

почти 2 года назад

Under certain conditions, Support Web Pages of SAP NetWeaver Process Integration (PI) - versions 7.50, allows an attacker to access information which would otherwise be restricted, causing low impact on Confidentiality with no impact on Integrity and Availability of the application.

EPSS

Процентиль: 52%

0.00287

Низкий

5.3 Medium

CVSS3

Дефекты

CWE-732

CWE-732

Уязвимость CVE-2024-28163