SAP NetWeaver AS ABAP and ABAP Platform information disclosure | CVE-2023-37492
NAME
__________
SAP NetWeaver AS ABAP and ABAP Platform information disclosure
Platforms Affected:
SAP NetWeaver AS ABAP 700
SAP NetWeaver AS ABAP 701
SAP NetWeaver AS ABAP 702
SAP NetWeaver AS ABAP 731
SAP NetWeaver AS ABAP 740
SAP NetWeaver AS ABAP 750
SAP NetWeaver AS ABAP 752
SAP NetWeaver AS ABAP 753
SAP NetWeaver AS ABAP 754
SAP NetWeaver AS ABAP 755
SAP NetWeaver AS ABAP 804
SAP NetWeaver AS ABAP Platform 700
SAP NetWeaver AS ABAP Platform 702
SAP NetWeaver AS ABAP Platform 731
SAP NetWeaver AS ABAP Platform 740
SAP NetWeaver AS ABAP Platform 750
SAP NetWeaver AS ABAP Platform 804
SAP NetWeaver AS ABAP Platform 701
SAP NetWeaver AS ABAP Platform 752
SAP NetWeaver AS ABAP Platform 753
SAP NetWeaver AS ABAP Platform 754
SAP NetWeaver AS ABAP Platform 755
SAP NetWeaver AS ABAP Platform 756
SAP NetWeaver AS ABAP 756
SAP NetWeaver AS ABAP Platform 757
SAP NetWeaver AS ABAP 758
SAP NetWeaver AS ABAP 793
SAP NetWeaver AS ABAP Platform 758
SAP NetWeaver AS ABAP Platform 793
Risk Level:
4.9
Exploitability:
High
Consequences:
Obtain Information
DESCRIPTION
__________
SAP NetWeaver AS ABAP and ABAP Platform could allow a remote authenticated attacker to obtain sensitive information, caused by improper authorization validation. By sending a specially crafted request, an attacker could exploit this vulnerability to obtain sensitive information, and use this information to launch further attacks against the affected system.
CVSS 3.0 Information
__________
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged
Access Vector:
Network
A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.
If you like the site, please support us on “Patreon” or “Buy Me A Coffee” using the buttons below
To keep up to date follow us on the below channels.
