Vulnerability Details CVE-2024-34683
An authenticated attacker can upload malicious
file to SAP Document Builder service. When the victim accesses this file, the
attacker is allowed to access, modify, or make the related information
unavailable in the victim’s browser.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 40.9%
CVSS Severity
CVSS v3 Score 6.5
References
Products affected by CVE-2024-34683
-
cpe:2.3:a:sap:document_builder:101
-
cpe:2.3:a:sap:document_builder:103
-
cpe:2.3:a:sap:document_builder:104
-
cpe:2.3:a:sap:document_builder:105
-
cpe:2.3:a:sap:document_builder:106
-
cpe:2.3:a:sap:document_builder:107
-
cpe:2.3:a:sap:document_builder:108
-
cpe:2.3:a:sap:document_builder:731
-
cpe:2.3:a:sap:document_builder:746
-
cpe:2.3:a:sap:document_builder:747
-
cpe:2.3:a:sap:document_builder:748
-
cpe:2.3:a:sap:document_builder:s4core_100
-
cpe:2.3:a:sap:document_builder:s4fnd_102
-
cpe:2.3:a:sap:document_builder:sap_bs_fnd_702