CVE-2024-41736

Under certain conditions SAP Permit to Work allows an authenticated attacker to access information which would otherwise be restricted causing low impact on the confidentiality of the application.
References
Link Resource
https://me.sap.com/notes/3475427 Permissions Required
https://url.sap/sapsecuritypatchday Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:sap:permit_to_work:uis4hop1_800:*:*:*:*:*:*:*
cpe:2.3:a:sap:permit_to_work:uis4hop1_900:*:*:*:*:*:*:*

History

No history.

Information

Published : 2024-08-13 04:15

Updated : 2024-09-12 13:51


NVD link : CVE-2024-41736

Mitre link : CVE-2024-41736

CVE.ORG link : CVE-2024-41736


JSON object : View

Products Affected

sap

  • permit_to_work
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

NVD-CWE-noinfo