CVE-2023-24526MEDIUMCVSS 5.3v7.502023-03-14
CVE-2023-24526 [MEDIUM] CWE-306 CVE-2023-24526: SAP NetWeaver Application Server Java for Classload Service - version 7.50, does not perform any aut
SAP NetWeaver Application Server Java for Classload Service - version 7.50, does not perform any authentication checks for functionalities that require user identity, resulting in escalation of privileges. This failure has a low impact on confidentiality of the data such that an unassigned user can read non-sensitive server data.
cvelistv5nvd