Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 8:57 a.m.7 views

CVE-2024-47580

An attacker authenticated as an administrator can use an exposed webservice to create a PDF with an embedded attachment. By specifying the file to be an internal server file and subsequently downloading the generated PDF, the attacker can read any file on the server with no effect on integrity or...

6.8CVSS6.6AI score0.00524EPSS
Exploits0References1
NVD
NVD
added 2024/12/10 1:15 a.m.9 views

CVE-2024-47580

An attacker authenticated as an administrator can use an exposed webservice to create a PDF with an embedded attachment. By specifying the file to be an internal server file and subsequently downloading the generated PDF, the attacker can read any file on the server with no effect on integrity or...

6.8CVSS0.00524EPSS
Exploits0References2
Circl
Circl
added 2024/12/10 12:50 a.m.9 views

CVE-2024-47580

creationtimestamp| type| source ---|---|--- 2024-12-10 00:50:43+00:00| seen| https://infosec.exchange/users/cve/statuses/113625782201988792 2024-12-10 03:15:44+00:00| seen| https://t.me/cvedetector/12469...

6.8CVSS4.8AI score0.00524EPSS
Exploits0References2
CVE
CVE
added 2024/12/10 12:12 a.m.90 views

CVE-2024-47580

CVE-2024-47580 affects SAP NetWeaver AS Java (Adobe Document Service). An attacker authenticated as an administrator can use an exposed webservice to create a PDF with an embedded attachment; by forcing the file to be an internal server file and downloading the PDF, they can read arbitrary server...

6.8CVSS6.5AI score0.00524EPSS
Exploits0References2
Rows per page
Query Builder