Sap Shared Service Framework
by SAP Se
CVEs (2)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-42377 | 0.00 | — | 0.00 | Aug 13, 2024 | SAP shared service framework allows an authenticated non-administrative user to call a remote-enabled function, which will allow them to insert value entries into a non-sensitive table, causing low impact on integrity of the application | ||
| CVE-2024-42376 | 0.00 | — | 0.00 | Aug 13, 2024 | SAP Shared Service Framework does not perform necessary authorization check for an authenticated user, resulting in escalation of privileges. On successful exploitation, an attacker can cause a high impact on confidentiality of the application. |
- CVE-2024-42377Aug 13, 2024risk 0.00cvss —epss 0.00
SAP shared service framework allows an authenticated non-administrative user to call a remote-enabled function, which will allow them to insert value entries into a non-sensitive table, causing low impact on integrity of the application
- CVE-2024-42376Aug 13, 2024risk 0.00cvss —epss 0.00
SAP Shared Service Framework does not perform necessary authorization check for an authenticated user, resulting in escalation of privileges. On successful exploitation, an attacker can cause a high impact on confidentiality of the application.