Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
•added 2025/02/05 1:8 p.m.•9 views

CVE-2024-25642

Due to improper validation of certificate in SAP Cloud Connector - version 2.0, attacker can impersonate the genuine servers to interact with SCC breaking the mutual authentication. Hence, the attacker can intercept the request to view/modify sensitive information. There is no impact on the...

7.4CVSS6.6AI score0.00544EPSS
Exploits1References1
Packet Storm
Packet Storm
•added 2024/05/15 12:0 a.m.•586 views

SAP Cloud Connector 2.16.1 Missing Validation

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Tolerating Self-Signed Certificates product: SAPĀ® Cloud Connector vulnerable version: 2.15.0 - 2.16.1 Portable and Installer fixed version: 2.16.2 Portable and Installer...

7.4CVSS7.1AI score0.00544EPSS
Exploits1
Circl
Circl
•added 2024/02/13 4:31 a.m.•5 views

CVE-2024-25642

creationtimestamp| type| source ---|---|--- 2024-02-13 04:31:52+00:00| seen| https://t.me/ctinow/183599 2024-05-19 08:48:18+00:00| seen| https://t.me/arpsyndicate/4946...

7.4CVSS7.3AI score0.00544EPSS
Exploits1References2
Vulnrichment
Vulnrichment
•added 2024/02/13 2:44 a.m.•7 views

CVE-2024-25642 Improper Certificate Validation in SAP Cloud Connector

Due to improper validation of certificate in SAP Cloud Connector - version 2.0, attacker can impersonate the genuine servers to interact with SCC breaking the mutual authentication. Hence, the attacker can intercept the request to view/modify sensitive information. There is no impact on the...

7.4CVSS7.4AI score0.00544EPSS
Exploits1References3
Cvelist
Cvelist
•added 2024/02/13 2:44 a.m.•27 views

CVE-2024-25642 Improper Certificate Validation in SAP Cloud Connector

Due to improper validation of certificate in SAP Cloud Connector - version 2.0, attacker can impersonate the genuine servers to interact with SCC breaking the mutual authentication. Hence, the attacker can intercept the request to view/modify sensitive information. There is no impact on the...

7.4CVSS7.6AI score0.00544EPSS
Exploits1References3
CVE
CVE
•added 2024/02/13 2:44 a.m.•52 views

CVE-2024-25642

CVE-2024-25642 affects SAP Cloud Connector 2.0, where improper validation of certificates can allow an attacker to impersonate legitimate servers and break mutual authentication, enabling interception of requests to view/modify sensitive data. The vulnerability impacts confidentiality and integri...

7.4CVSS7.4AI score0.00544EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder