4 matches found
CVE-2024-47579
An attacker authenticated as an administrator can use an exposed webservice to upload or download a custom PDF font file on the system server. Using the upload functionality to copy an internal file into a font file and subsequently using the download functionality to retrieve that file allows th...
CVE-2024-47579
creationtimestamp| type| source ---|---|--- 2024-12-10 00:50:42+00:00| seen| https://infosec.exchange/users/cve/statuses/113625782187601217 2024-12-10 03:15:43+00:00| seen| https://t.me/cvedetector/12468...
CVE-2024-47579
The CVE-2024-47579 entry concerns SAP NetWeaver AS Java. An attacker with administrator privileges can use an exposed webservice to upload or download a custom PDF font file on the system server. The upload can copy an internal file into a font file, and the download can retrieve that file, allow...
CVE-2024-47579 Multiple vulnerabilities in SAP NetWeaver AS for JAVA(Adobe Document Services)
An attacker authenticated as an administrator can use an exposed webservice to upload or download a custom PDF font file on the system server. Using the upload functionality to copy an internal file into a font file and subsequently using the download functionality to retrieve that file allows th...