5 matches found
CVE-2024-21737
In SAP Application Interface Framework File Adapter - version 702, a high privilege user can use a function module to traverse through various layers and execute OS commands directly. By this, such user can control the behaviour of the application. This leads to considerable impact on...
CVE-2024-21737
In SAP Application Interface Framework File Adapter - version 702, CVE-2024-21737 describes a code/injection path where a high-privilege user can traverse through layers via a function module and directly execute operating-system commands, allowing control over application behavior. The vulnerabi...
CVE-2024-21737 Code Injection vulnerability in SAP Application Interface Framework (File Adapter)
In SAP Application Interface Framework File Adapter - version 702, a high privilege user can use a function module to traverse through various layers and execute OS commands directly. By this, such user can control the behaviour of the application. This leads to considerable impact on...
SAP Application Interface Framework Code Injection Vulnerability
SAP Application Interface Framework SAP AIF is an application interface framework from SAP. A code injection vulnerability exists in the SAP Application Interface Framework File Adapter, which can be exploited to allow an elevated privilege user to traverse layers and directly execute operating...
@abstraktor/actordemo (>=0.0.0-ad-beta.1 <=0.0.0-ad-beta.2), @abstraktor/actorjs (>=0.0.0-aj-beta.3 <=0.0.0-aj-beta.6) +59 more potentially affected by CVE-2022-24066 +1 more via simple-git (>=3.0.3 <=3.14.1)
simple-git NPM version =3.0.3, =0.0.0-ad-beta.1, =0.0.0-aj-beta.3, =2.0.0, =1.0.1-beta.0, =1.0.3, =1.0.1, =0.1.1, =3.0.5, =1.1.3, =1.4.0-beta.3 - @logol/dc-cli =1.2.0 and more Source cves: CVE-2022-24066, CVE-2022-25912 Source advisory: SNYK:JS-SIMPLEGIT-3112221...