Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:59 a.m.6 views

CVE-2023-50424

SAP BTP Security Services Integration Library Golang github.com/sap/cloud-security-client-go - versions 0.17.0, allow under certain conditions an escalation of privileges. On successful exploitation, an unauthenticated attacker can obtain arbitrary permissions within the application...

9.8CVSS7.3AI score0.01127EPSS
Exploits0References1
Circl
Circl
added 2024/01/01 5:7 p.m.9 views

CVE-2023-50424

creationtimestamp| type| source ---|---|--- 2024-01-01 17:07:17+00:00| seen| https://t.me/ctinow/161382...

9.8CVSS8.7AI score0.01127EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2023/12/13 1:34 p.m.32 views

Improper Privilege Management in github.com/sap/cloud-security-client-go

Impact SAP BTP Security Services Integration Library Golang github.com/sap/cloud-security-client-go allows under certain conditions an escalation of privileges. On successful exploitation, an unauthenticated attacker can obtain arbitrary permissions within the application. Patches Upgrade to...

9.8CVSS7.4AI score0.01127EPSS
Exploits0References9Affected Software1
vulnersOsv
vulnersOsv
added 2023/12/13 1:33 p.m.5 views

com.sap.cds:cds-starter-cloudfoundry (>=1.19.0 <=1.34.7), com.sap.cds:cds-starter-k8s (>=1.34.0 <=1.34.7) +4 more potentially affected by CVE-2023-50422 +1 more via com.sap.cloud.security.xsuaa:spring-xsuaa (>=1.3.0 <=2.16.0)

com.sap.cloud.security.xsuaa:spring-xsuaa MAVEN version =1.3.0, =1.19.0, =1.34.0, =2.11.16, =2.10.0, =1.3.0, =1.6.0, =2.16.0 Source cves: CVE-2023-50422, CVE-2023-50424 Source advisory: OSV:GHSA-59C9-PXQ8-9C73...

9.8CVSS7.2AI score0.01355EPSS
Exploits0
Cvelist
Cvelist
added 2023/12/12 1:59 a.m.36 views

CVE-2023-50424 Escalation of Privileges in SAP BTP Security Services Integration Library ([Golang] github.com/sap/cloud-security-client-go)

SAP BTP Security Services Integration Library Golang github.com/sap/cloud-security-client-go - versions 0.17.0, allow under certain conditions an escalation of privileges. On successful exploitation, an unauthenticated attacker can obtain arbitrary permissions within the application...

9.1CVSS9.8AI score0.01127EPSS
Exploits0References6
OSV
OSV
added 2023/12/12 1:59 a.m.7 views

CVE-2023-50424 Escalation of Privileges in SAP BTP Security Services Integration Library ([Golang] github.com/sap/cloud-security-client-go)

SAP BTP Security Services Integration Library Golang github.com/sap/cloud-security-client-go - versions 0.17.0, allow under certain conditions an escalation of privileges. On successful exploitation, an unauthenticated attacker can obtain arbitrary permissions within the application...

9.1CVSS7.3AI score0.01355EPSS
Exploits0References8
CVE
CVE
added 2023/12/12 1:59 a.m.54 views

CVE-2023-50424

CVE-2023-50424 affects SAP BTP Security Services Integration Library (Go: github.com/sap/cloud-security-client-go) and versions = 0.17.0 (or newer as released). Other advisories reinforce upgrading as the primary mitigation; no exploits/immediate weaponization details are provided in the connecte...

9.8CVSS9.6AI score0.01127EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder