Unrated severityNVD Advisory· Published May 9, 2023· Updated Jan 28, 2025
Information Disclosure vulnerability in SAP GUI for Windows
CVE-2023-32113
Description
SAP GUI for Windows - version 7.70, 8.0, allows an unauthorized attacker to gain NTLM authentication information of a victim by tricking it into clicking a prepared shortcut file. Depending on the authorizations of the victim, the attacker can read and modify potentially sensitive information after successful exploitation.
Affected products
27.70, 8.0+ 1 more
- (no CPE)range: 7.70, 8.0
- (no CPE)range: <= 7.70
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.