6 matches found
CVE-2024-25642
Due to improper validation of certificate in SAP Cloud Connector - version 2.0, attacker can impersonate the genuine servers to interact with SCC breaking the mutual authentication. Hence, the attacker can intercept the request to view/modify sensitive information. There is no impact on the...
SAP Cloud Connector 2.16.1 Missing Validation
SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Tolerating Self-Signed Certificates product: SAPĀ® Cloud Connector vulnerable version: 2.15.0 - 2.16.1 Portable and Installer fixed version: 2.16.2 Portable and Installer...
CVE-2024-25642
creationtimestamp| type| source ---|---|--- 2024-02-13 04:31:52+00:00| seen| https://t.me/ctinow/183599 2024-05-19 08:48:18+00:00| seen| https://t.me/arpsyndicate/4946...
CVE-2024-25642 Improper Certificate Validation in SAP Cloud Connector
Due to improper validation of certificate in SAP Cloud Connector - version 2.0, attacker can impersonate the genuine servers to interact with SCC breaking the mutual authentication. Hence, the attacker can intercept the request to view/modify sensitive information. There is no impact on the...
CVE-2024-25642 Improper Certificate Validation in SAP Cloud Connector
Due to improper validation of certificate in SAP Cloud Connector - version 2.0, attacker can impersonate the genuine servers to interact with SCC breaking the mutual authentication. Hence, the attacker can intercept the request to view/modify sensitive information. There is no impact on the...
CVE-2024-25642
CVE-2024-25642 affects SAP Cloud Connector 2.0, where improper validation of certificates can allow an attacker to impersonate legitimate servers and break mutual authentication, enabling interception of requests to view/modify sensitive data. The vulnerability impacts confidentiality and integri...