Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 3:55 a.m.5 views

CVE-2024-27901

SAP Asset Accounting could allow a high privileged attacker to exploit insufficient validation of path information provided by the users and pass it through to the file API's. Thus, causing a considerable impact on confidentiality, integrity and availability of the application...

7.2CVSS6.5AI score0.00726EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/04/22 12:0 a.m.7 views

The vulnerability of SAP Asset Accounting software for asset management and accounting involves incorrect restrictions on path names in the catalog, allowing attackers to manipulate the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the SAP Asset Accounting software for asset management and accounting is related to incorrect restrictions on the path to the catalog. Exploitation of this vulnerability can allow a malicious actor to influence the confidentiality, integrity, and accessibility of protected...

8.3CVSS5.5AI score0.00726EPSS
Exploits0References4
NVD
NVD
added 2024/04/09 1:15 a.m.14 views

CVE-2024-27901

SAP Asset Accounting could allow a high privileged attacker to exploit insufficient validation of path information provided by the users and pass it through to the file API's. Thus, causing a considerable impact on confidentiality, integrity and availability of the application...

7.2CVSS6.7AI score0.00726EPSS
Exploits0References2
CVE
CVE
added 2024/04/09 12:55 a.m.63 views

CVE-2024-27901

CVE-2024-27901 (SAP Asset Accounting) : The vulnerability arises from insufficient validation of user-supplied path information that is passed to the File API, enabling a directory-traversal condition. Impact is described as affecting confidentiality, integrity, and availability of the applicatio...

7.2CVSS6.7AI score0.00726EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/04/09 12:55 a.m.13 views

CVE-2024-27901 Directory Traversal vulnerability in SAP Asset Accounting

SAP Asset Accounting could allow a high privileged attacker to exploit insufficient validation of path information provided by the users and pass it through to the file API's. Thus, causing a considerable impact on confidentiality, integrity and availability of the application...

7.2CVSS6.5AI score0.00726EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/04/09 12:55 a.m.22 views

CVE-2024-27901 Directory Traversal vulnerability in SAP Asset Accounting

SAP Asset Accounting could allow a high privileged attacker to exploit insufficient validation of path information provided by the users and pass it through to the file API's. Thus, causing a considerable impact on confidentiality, integrity and availability of the application...

7.2CVSS6.9AI score0.00726EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/04/09 12:0 a.m.4 views

SAP Asset Accounting 安全漏洞

SAP Asset Accounting is an asset accounting program from SAP, Germany. It is used to manage and monitor fixed assets. A security vulnerability exists in SAP Asset Accounting that stems from allowing an elevated-privilege attacker to exploit insufficient authentication of user-supplied path...

7.2CVSS6.6AI score0.00726EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/04/08 12:0 a.m.8 views

PT-2024-2957 · Sap · Sap Asset Accounting

Name of the Vulnerable Software and Affected Versions: SAP Asset Accounting affected versions not specified Description: The issue is related to insufficient validation of path information provided by users, which can be exploited by a high-privileged attacker to impact the confidentiality,...

8.3CVSS6.6AI score0.00726EPSS
Exploits0References8
Rows per page
Query Builder