Unrated severityNVD Advisory· Published Feb 13, 2024· Updated May 9, 2025

Missing authorization check in SAP BAM (Bank Account Management)

CVE-2024-24739

Description

SAP Bank Account Management (BAM) allows an authenticated user with restricted access to use functions which can result in escalation of privileges with low impact on confidentiality, integrity and availability of the application.

Affected products

SAP/Bank Account Managementllm-fuzzy2 versions
(expand)+ 1 more
- (no CPE)
- (no CPE)range: SAP_FIN 618

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

me.sap.com/notes/2637727mitre
www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.htmlmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000