CVE-2024-41732
CVSS V2 None
CVSS V3 None
Description
SAP NetWeaver Application Server ABAP allows
an unauthenticated attacker to craft a URL link that could bypass allowlist
controls. Depending on the web applications provided by this server, the
attacker might inject CSS code or links into the web application that could
allow the attacker to read or modify information. There is no impact on
availability of application.
Overview
- CVE ID
- CVE-2024-41732
- Assigner
- sap
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-08-13T03:58:36.444Z
- Last Modified Date
- 2024-08-13T03:58:36.444Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://me.sap.com/notes/3468102 | |
| https://url.sap/sapsecuritypatchday |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-41732 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41732 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-08-13 13:04:46 | Added to TrackCVE |