Vulnerability CVE-2024-44116


Published: 2024-09-10

Description:
The RFC enabled function module allows a low privileged user to add any workbook to any user's workplace favourites. This vulnerability could be utilized to identify usernames and access information about targeted user's workplaces. There is low impact on integrity of the application.

Type:

CWE-862

(Missing Authorization)

 References:
https://me.sap.com/notes/3488039
https://url.sap/sapsecuritypatchday

Copyright 2026, cxsecurity.com

 

Back to Top