CVE-2024-37180
published 2024-07-09CVE-2024-37180: Under certain conditions SAP NetWeaver Application Server for ABAP and ABAP Platform allows an attacker to access remote-enabled function module with no…
medium5.3CVSS 3.1
AVNACLPRNUINSUCLINAN
Under certain conditions SAP NetWeaver
Application Server for ABAP and ABAP Platform allows an attacker to access
remote-enabled function module with no further authorization which would
otherwise be restricted, the function can be used to read non-sensitive
information with low impact on confidentiality of the application.
Affected
28 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap_se | sap_netweaver_application_server_for_abap_and_abap_platform | — | — |
| sap_se | sap_netweaver_application_server_for_abap_and_abap_platform | — | — |
| sap_se | sap_netweaver_application_server_for_abap_and_abap_platform | — | — |
| sap_se | sap_netweaver_application_server_for_abap_and_abap_platform | — | — |
| sap_se | sap_netweaver_application_server_for_abap_and_abap_platform | — | — |
| sap_se | sap_netweaver_application_server_for_abap_and_abap_platform | — | — |
| sap_se | sap_netweaver_application_server_for_abap_and_abap_platform | — | — |
| sap_se | sap_netweaver_application_server_for_abap_and_abap_platform | — | — |
| sap_se | sap_netweaver_application_server_for_abap_and_abap_platform | — | — |
| sap_se | sap_netweaver_application_server_for_abap_and_abap_platform | — | — |
| sap_se | sap_netweaver_application_server_for_abap_and_abap_platform | — | — |