CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-34689

WebFlow Services of SAP Business Workflow allows an authenticated attacker to enumerate accessible HTTP endpoints in the internal network by specially crafting HTTP requests. On successful exploitation this can result in information disclosure. It has no impact on integrity and availability of the application.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 27.8%

CVSS Severity

CVSS v3 Score 5.0

References

Products affected by CVE-2024-34689

Sap » Business Workflow » Version: Any

cpe:2.3:a:sap:business_workflow:*
Sap » Sap Basis » Version: 700

cpe:2.3:a:sap:sap_basis:700
Sap » Sap Basis » Version: 701

cpe:2.3:a:sap:sap_basis:701
Sap » Sap Basis » Version: 702

cpe:2.3:a:sap:sap_basis:702
Sap » Sap Basis » Version: 731

cpe:2.3:a:sap:sap_basis:731
Sap » Sap Basis » Version: 740

cpe:2.3:a:sap:sap_basis:740
Sap » Sap Basis » Version: 750

cpe:2.3:a:sap:sap_basis:750
Sap » Sap Basis » Version: 751

cpe:2.3:a:sap:sap_basis:751
Sap » Sap Basis » Version: 752

cpe:2.3:a:sap:sap_basis:752
Sap » Sap Basis » Version: 753

cpe:2.3:a:sap:sap_basis:753
Sap » Sap Basis » Version: 754

cpe:2.3:a:sap:sap_basis:754
Sap » Sap Basis » Version: 755

cpe:2.3:a:sap:sap_basis:755
Sap » Sap Basis » Version: 756

cpe:2.3:a:sap:sap_basis:756
Sap » Sap Basis » Version: 757

cpe:2.3:a:sap:sap_basis:757
Sap » Sap Basis » Version: 758

cpe:2.3:a:sap:sap_basis:758

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-34689

Products

Pricing

Contact Us