216.73.217.6

CVE-2024-45283

· Published 10/09/2024 05:15 · Modified 10/09/2024 12:09

Labels: CVE-2024-45283 2024-09-10CVE-2024-45283CWE-256[email protected]

Essential information

Published
10/09/2024 05:15
Modified
10/09/2024 12:09
Author
Creator
CVSS
6.0 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N

CVSS metrics

Description

SAP NetWeaver AS for Java allows an authorized attacker to obtain sensitive information. The attacker could obtain the username and password when creating an RFC destination. After successful exploitation, an attacker can read the sensitive information but cannot modify or delete the data.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

References