VDB
CISA-2024-28164
CISA-2024-28164
PUBLISHED
CVSS 5.3 MEDIUM
Reported by sap · Published June 11, 2024
SAP NetWeaver AS Java (CAF - Guided Procedures) allows an unauthenticated user to access non-sensitive information about the server which would otherwise be restricted causing low impact on confidentiality of the application.
Risk Scores
CVSS 3.1
5.3
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SAP_SE | SAP NetWeaver AS Java | GP-CORE 7.5 |
| SAP_SE | SAP NetWeaver AS Java | GP-CORE 7.5, GP-CORE 7.5 |
| sap | netweaver | 7.50, 7.50 |
Timeline
- Jun 11, 2024 CVE Published
- Aug 2, 2024 CVE Updated