CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-42376

SAP Shared Service Framework does not perform necessary authorization check for an authenticated user, resulting in escalation of privileges. On successful exploitation, an attacker can cause a high impact on confidentiality of the application.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 31.5%

CVSS Severity

CVSS v3 Score 6.5

References

Products affected by CVE-2024-42376

Sap » Shared Service Framework » Version: sap_bs_fnd_702

cpe:2.3:a:sap:shared_service_framework:sap_bs_fnd_702
Sap » Shared Service Framework » Version: sap_bs_fnd_731

cpe:2.3:a:sap:shared_service_framework:sap_bs_fnd_731
Sap » Shared Service Framework » Version: sap_bs_fnd_746

cpe:2.3:a:sap:shared_service_framework:sap_bs_fnd_746
Sap » Shared Service Framework » Version: sap_bs_fnd_747

cpe:2.3:a:sap:shared_service_framework:sap_bs_fnd_747
Sap » Shared Service Framework » Version: sap_bs_fnd_748

cpe:2.3:a:sap:shared_service_framework:sap_bs_fnd_748

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-42376

Products

Pricing

Contact Us