Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Shared_service_framework
(Sap)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 2 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2024-08-13 | CVE-2024-42376 | SAP Shared Service Framework does not perform necessary authorization check for an authenticated user, resulting in escalation of privileges. On successful exploitation, an attacker can cause a high impact on confidentiality of the application. | Shared_service_framework | 6.5 | ||
| 2024-08-13 | CVE-2024-42377 | SAP shared service framework allows an authenticated non-administrative user to call a remote-enabled function, which will allow them to insert value entries into a non-sensitive table, causing low impact on integrity of the application | Shared_service_framework | 4.3 |