Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2024-24743
HistoryFeb 13, 2024 - 3:15 a.m.

Design/Logic Flaw

2024-02-1303:15:00
PRIOn knowledge base
www.prio-n.com
5
design flaw
logic flaw
sap netweaver
unauthenticated attacker
xml parsing
network security
sensitive data access
expansion limits

7.1 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.2%

JSON

SAP NetWeaver AS Java (CAF - Guided Procedures) - version 7.50, allows an unauthenticated attacker to submit a malicious request with a crafted XML file over the network, which when parsed will enable him to access sensitive files and data but not modify them. There are expansion limits in place so that availability is not affected.

Related

cve 1
nvd 1
cvelist 1
nessus 1
cve
cve
CVE-2024-24743
2024-02-13 03:15:09
nvd
nvd
CVE-2024-24743
2024-02-13 03:15:09
cvelist
cvelist
CVE-2024-24743 XXE vulnerability in SAP NetWeaver AS Java (Guided Procedures)
2024-02-13 02:43:40
nessus
nessus
SAP NetWeaver AS Java Multiple Vulnerabilities (Feb 2024)
2024-02-16 00:00:00

7.1 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.2%

JSON
Related for PRION:CVE-2024-24743
cve1nvd1cvelist1nessus1