Vulnerability CVE-2024-42376
Published: 2024-08-13

Description:
SAP Shared Service Framework does not perform necessary
authorization check for an authenticated user, resulting in escalation of
privileges. On successful exploitation, an attacker can cause a high impact on
confidentiality of the application.

Type:

CWE-862

 (Missing Authorization)

 References:
https://me.sap.com/notes/3474590
https://url.sap/sapsecuritypatchday
Copyright 2026, cxsecurity.com

 

Back to Top