Vulnerability Details CVE-2024-24741
SAP Master Data Governance for Material Data - versions 618, 619, 620, 621, 622, 800, 801, 802, 803, 804, does not perform necessary authorization check for an authenticated user, resulting in escalation of privileges. This could allow an attacker to read some sensitive information but no impact to integrity and availability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 36.8%
CVSS Severity
CVSS v3 Score 4.3
References
Products affected by CVE-2024-24741
-
cpe:2.3:a:sap:master_data_governance_for_material_data:618
-
cpe:2.3:a:sap:master_data_governance_for_material_data:619
-
cpe:2.3:a:sap:master_data_governance_for_material_data:620
-
cpe:2.3:a:sap:master_data_governance_for_material_data:621
-
cpe:2.3:a:sap:master_data_governance_for_material_data:622
-
cpe:2.3:a:sap:master_data_governance_for_material_data:800
-
cpe:2.3:a:sap:master_data_governance_for_material_data:801
-
cpe:2.3:a:sap:master_data_governance_for_material_data:802
-
cpe:2.3:a:sap:master_data_governance_for_material_data:803
-
cpe:2.3:a:sap:master_data_governance_for_material_data:804