VYPR
Unrated severityNVD Advisory· Published May 9, 2023· Updated Jan 28, 2025

Information Disclosure vulnerability in SAP GUI for Windows

CVE-2023-32113

Description

SAP GUI for Windows - version 7.70, 8.0, allows an unauthorized attacker to gain NTLM authentication information of a victim by tricking it into clicking a prepared shortcut file. Depending on the authorizations of the victim, the attacker can read and modify potentially sensitive information after successful exploitation.

Affected products

2
  • SAP/Gui For Windowsllm-fuzzy2 versions
    7.70, 8.0+ 1 more
    • (no CPE)range: 7.70, 8.0
    • (no CPE)range: <= 7.70

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.