VDB
GCVE-VVD-NCSC-2024-228
GCVE-VVD-NCSC-2024-228
Advisory PublishedCVSS 8.1/10
SAP heeft kwetsbaarheden verholpen in diverse producten, zoals NetWeaver, Business Objects, HANA en SAP GUI.
Weaknesses (CWE)
CWE-79Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')CWE-862Missing AuthorizationCWE-922Insecure Storage of Sensitive InformationCWE-434Unrestricted Upload of File with Dangerous TypeCWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-89Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Risk Scores
CVSS 3.1
8.1/10
High · CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| sap | businessobjects_business_intelligence_platform | — | — |
Aliases
CVE-2024-4138CVE-2024-33004CVE-2024-4139CVE-2024-32733CVE-2024-33009CVE-2024-32730CVE-2024-33007CVE-2024-33002CVE-2024-33006CVE-2024-28165CVE-2024-32731CVE-2024-33008CVE-2024-33000CVE-2024-34687CVE-2022-36364
Transitive aliases
GHSA-prf2-4xjw-553wEUVD-2024-30751CVE-2024-34683CVE-2024-37176GHSA-w7f5-jrpr-5c2mVVD-CISA-2024-37176GSD-2024-33001CVE-2024-28164CVE-2024-37177CVE-2024-34684VVD-NCSC-2024-247VVD-CISA-2024-37177EUVD-2024-30517VVD-CISA-2024-32730EUVD-2024-34987GHSA-23gf-62w7-q77vVVD-CISA-2024-34687GHSA-3wpq-gjx8-r7c8EUVD-2024-34990GHSA-9rp9-4vx9-p834GHSA-6jcq-5j67-2qh3EUVD-2024-30752VVD-CISA-2024-33000VVD-CISA-2024-33009EUVD-2024-30749EUVD-2024-34985EUVD-2024-30746EUVD-2024-30745EUVD-2024-34983GHSA-6qmc-84fw-65c9VVD-CISA-2024-32733BDU:2024-05101NCSC-2024-0228VVD-CISA-2024-34688GHSA-mx49-v6wc-9vxfEUVD-2024-30518GHSA-rpjh-2px8-r4m7VVD-CISA-2024-28164VVD-CISA-2024-28165GHSA-r32p-mj73-6wq6EUVD-2024-34982BDU:2024-05104VVD-CISA-2024-33008GHSA-rwr4-vcmx-mq8wBDU:2024-05099GHSA-2xhx-vgfw-g59cVVD-CISA-2024-34690EUVD-2024-36483VVD-CISA-2024-33007EUVD-2024-30747GHSA-f4xj-jr64-mrrfVVD-CISA-2024-33004CVE-2024-34690EUVD-2024-25296VVD-CISA-2024-34684EUVD-2024-30754GSD-2024-28165GHSA-v435-c8wm-qmjmEUVD-2024-30520CGA-5w69-hjc2-pq79EUVD-2024-30753VVD-CISA-2024-33002CVE-2024-34688EUVD-2022-6428GHSA-5jpr-j92r-8ppmGHSA-4qcf-w92c-26h6VVD-CISA-2024-32731GHSA-3m6r-3gw2-h96xGSD-2024-28164GHSA-xqh8-8m3p-c72rGHSA-fwgg-ghmr-9fqpEUVD-2024-34986VVD-CISA-2024-33006CVE-2024-34686GHSA-5rfc-xc58-54q3WID-SEC-W-2024-1327NCSC-2024-0247BDU:2024-05097GHSA-x685-hmwx-rrvfGHSA-qfqw-rh34-r78mEUVD-2024-32699CVE-2024-33001EUVD-2024-36482VVD-CISA-2024-33001VVD-CISA-2024-4139BDU:2024-05100VVD-CISA-2024-34691EUVD-2024-25297CVE-2024-34691BDU:2022-05272WID-SEC-W-2024-1107VVD-CISA-2024-4138VVD-CISA-2024-34683GHSA-4h5h-v89j-3c37BDU:2024-05090EUVD-2024-34989GHSA-j445-5264-j568BDU:2024-05079CGA-cvxh-5ph4-h33jEUVD-2024-32698VVD-CISA-2024-34686GHSA-xmf8-c7vj-6x2r
Browse GCVE Records
100 records in the GCVE database · Updated April 16, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.