Vulnerability CVE-2024-34683
Published: 2024-06-11

Description:
An authenticated attacker can upload malicious
file to SAP Document Builder service. When the victim accesses this file, the
attacker is allowed to access, modify, or make the related information
unavailable in the victim??s browser.

Type:

CWE-434

 (Unrestricted Upload of File with Dangerous Type)

 References:
https://me.sap.com/notes/3459379
https://support.sap.com/en/my-support/knowledge-base/security-notes-news.html
Copyright 2026, cxsecurity.com

 

Back to Top