CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-37172

SAP S/4HANA Finance (Advanced Payment Management) does not perform necessary authorization check for an authenticated user, resulting in escalation of privileges. As a result, it has a low impact to confidentiality and availability but there is no impact on the integrity.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 39.1%

CVSS Severity

CVSS v3 Score 5.4

References

https://me.sap.com/notes/3457354
https://url.sap/sapsecuritypatchday
https://me.sap.com/notes/3457354
https://url.sap/sapsecuritypatchday

Products affected by CVE-2024-37172

Sap » S/4hana » Version: N/A

cpe:2.3:a:sap:s/4hana:-
Sap » S4core » Version: 107

cpe:2.3:a:sap:s4core:107
Sap » S4core » Version: 108

cpe:2.3:a:sap:s4core:108

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-37172

Products

Pricing

Contact Us