Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 8:35 a.m.3 views

CVE-2024-32731

SAP My Travel Requests does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. On successful exploitation, the attacker can upload a malicious attachment to a business trip request which will lead to a low impact on the confidentiality,...

5.5CVSS7AI score0.00363EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2025/01/28 10:8 p.m.19 views

Security Bulletin: IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable to SAP My Travel Requests privilege excalation vulnerability [ CVE-2024-32731]

Summary Potential SAP My Travel Requests privilege excalation vulnerability CVE-2024-32731 have been identified that could affect IBM Watson Assistant for IBM Cloud Pak for Data. The vulnerability have been addressed. Refer to details for additional information. Vulnerability Details...

5.5CVSS6.8AI score0.00363EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2024/05/30 12:0 a.m.5 views

SAP My Travel Requests Authorization Issues Vulnerability

SAP My Travel Requests is a transactional application from SAP, USA. An authorization issue vulnerability exists in SAP My Travel Requests, which stems from a failure to perform the required authorization checks on authenticated users, and can be exploited by an attacker to cause an escalation of...

5.5CVSS6.9AI score0.00363EPSS
Exploits0References1
CVE
CVE
added 2024/05/14 3:7 a.m.65 views

CVE-2024-32731

SAP My Travel Requests contains a privilege-escalation vulnerability due to missing authorization checks for authenticated users. Exploitation could allow an attacker to upload a malicious attachment to a business trip request, with low impact on confidentiality, integrity and availability as des...

5.5CVSS7AI score0.00363EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/05/14 3:7 a.m.21 views

CVE-2024-32731 Missing Authorization check in SAP My Travel Requests

SAP My Travel Requests does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. On successful exploitation, the attacker can upload a malicious attachment to a business trip request which will lead to a low impact on the confidentiality,...

5.5CVSS6AI score0.00363EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/05/14 3:7 a.m.14 views

CVE-2024-32731 Missing Authorization check in SAP My Travel Requests

SAP My Travel Requests does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. On successful exploitation, the attacker can upload a malicious attachment to a business trip request which will lead to a low impact on the confidentiality,...

5.5CVSS7.1AI score0.00363EPSS
Exploits0References2
OSV
OSV
added 2023/02/14 4:15 a.m.4 views

CVE-2023-24528

SAP Fiori apps for Travel Management in SAP ERP My Travel Requests - version 600, allows an authenticated attacker to exploit a certain misconfigured application endpoint to view sensitive data. This endpoint is normally exposed over the network and successful exploitation can lead to exposure of...

6.5CVSS6.3AI score0.00486EPSS
Exploits0References2
Rows per page
Query Builder