CVE-2024-24740
Information Disclosure vulnerability in SAP NetWeaver Application Server ABAP (SAP Kernel)
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
SAP NetWeaver Application Server (ABAP) - versions KERNEL 7.53, KERNEL 7.54, KERNEL 7.77, KERNEL 7.85, KERNEL 7.89, KERNEL 7.93, KERNEL 7.94, KRNL64UC 7.53, under certain conditions, allows an attacker to access information which could otherwise be restricted with low impact on confidentiality of the application.
SAP NetWeaver Application Server (ABAP): versiones KERNEL 7.53, KERNEL 7.54, KERNEL 7.77, KERNEL 7.85, KERNEL 7.89, KERNEL 7.93, KERNEL 7.94, KRNL64UC 7.53, bajo ciertas condiciones, permite a un atacante acceder a información que de otro modo podría estar restringida con baja impacto en la confidencialidad de la solicitud.
SAP NetWeaver Application Server (ABAP) - versions KERNEL 7.53, KERNEL 7.54, KERNEL 7.77, KERNEL 7.85, KERNEL 7.89, KERNEL 7.93, KERNEL 7.94, KRNL64UC 7.53, under certain conditions, allows an attacker to access information which could otherwise be restricted with low impact on confidentiality of the application.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2024-01-29 CVE Reserved
- 2024-02-13 CVE Published
- 2024-09-28 CVE Updated
- 2025-01-13 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
- CWE-732: Incorrect Permission Assignment for Critical Resource
CAPEC
References (2)
| URL | Tag | Source |
|---|---|---|
| https://me.sap.com/notes/3360827 | ||
| https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| SAP SE Search vendor "SAP SE" | SAP NetWeaver Application Server ABAP (SAP Kernel) Search vendor "SAP SE" for product "SAP NetWeaver Application Server ABAP (SAP Kernel)" | 7.53 Search vendor "SAP SE" for product "SAP NetWeaver Application Server ABAP (SAP Kernel)" and version "7.53" | en |
Affected
| ||||||
| SAP SE Search vendor "SAP SE" | SAP NetWeaver Application Server ABAP (SAP Kernel) Search vendor "SAP SE" for product "SAP NetWeaver Application Server ABAP (SAP Kernel)" | 7.54 Search vendor "SAP SE" for product "SAP NetWeaver Application Server ABAP (SAP Kernel)" and version "7.54" | en |
Affected
| ||||||
| SAP SE Search vendor "SAP SE" | SAP NetWeaver Application Server ABAP (SAP Kernel) Search vendor "SAP SE" for product "SAP NetWeaver Application Server ABAP (SAP Kernel)" | 7.77 Search vendor "SAP SE" for product "SAP NetWeaver Application Server ABAP (SAP Kernel)" and version "7.77" | en |
Affected
| ||||||
| SAP SE Search vendor "SAP SE" | SAP NetWeaver Application Server ABAP (SAP Kernel) Search vendor "SAP SE" for product "SAP NetWeaver Application Server ABAP (SAP Kernel)" | 7.85 Search vendor "SAP SE" for product "SAP NetWeaver Application Server ABAP (SAP Kernel)" and version "7.85" | en |
Affected
| ||||||
| SAP SE Search vendor "SAP SE" | SAP NetWeaver Application Server ABAP (SAP Kernel) Search vendor "SAP SE" for product "SAP NetWeaver Application Server ABAP (SAP Kernel)" | 7.89 Search vendor "SAP SE" for product "SAP NetWeaver Application Server ABAP (SAP Kernel)" and version "7.89" | en |
Affected
| ||||||
| SAP SE Search vendor "SAP SE" | SAP NetWeaver Application Server ABAP (SAP Kernel) Search vendor "SAP SE" for product "SAP NetWeaver Application Server ABAP (SAP Kernel)" | 7.93 Search vendor "SAP SE" for product "SAP NetWeaver Application Server ABAP (SAP Kernel)" and version "7.93" | en |
Affected
| ||||||
| SAP SE Search vendor "SAP SE" | SAP NetWeaver Application Server ABAP (SAP Kernel) Search vendor "SAP SE" for product "SAP NetWeaver Application Server ABAP (SAP Kernel)" | 7.94 Search vendor "SAP SE" for product "SAP NetWeaver Application Server ABAP (SAP Kernel)" and version "7.94" | en |
Affected
| ||||||