CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-42377

SAP shared service framework allows an authenticated non-administrative user to call a remote-enabled function, which will allow them to insert value entries into a non-sensitive table, causing low impact on integrity of the application

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 28.2%

CVSS Severity

CVSS v3 Score 4.3

References

Products affected by CVE-2024-42377

Sap » Shared Service Framework » Version: sap_bs_fnd_702

cpe:2.3:a:sap:shared_service_framework:sap_bs_fnd_702
Sap » Shared Service Framework » Version: sap_bs_fnd_731

cpe:2.3:a:sap:shared_service_framework:sap_bs_fnd_731
Sap » Shared Service Framework » Version: sap_bs_fnd_746

cpe:2.3:a:sap:shared_service_framework:sap_bs_fnd_746
Sap » Shared Service Framework » Version: sap_bs_fnd_747

cpe:2.3:a:sap:shared_service_framework:sap_bs_fnd_747
Sap » Shared Service Framework » Version: sap_bs_fnd_748

cpe:2.3:a:sap:shared_service_framework:sap_bs_fnd_748

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-42377

Products

Pricing

Contact Us