CVE-2024-44117

The RFC enabled function module allows a low privileged user to perform various actions, such as modifying the URLs of any user's favourite nodes and workbook ID. There is low impact on integrity and availability of the application...

CVE-2024-44116

The RFC enabled function module allows a low privileged user to add any workbook to any user's workplace favourites. This vulnerability could be utilized to identify usernames and access information about targeted user's workplaces. There is low impact on integrity of the application...

CVE-2024-45285

The RFC enabled function module allows a low privileged user to perform denial of service on any user and also change or delete favourite nodes. By sending a crafted packet in the function module targeting specific parameters, the specific targeted user will no longer have access to any...

CVE-2024-45285

CVE-2024-45285 refers to a vulnerability in SAP NetWeaver AS ABAP/ABAP Platform where an RFC-enabled function module allows a low-privileged user to perform a denial-of-service and to change or delete users’ favourite nodes. The impact is described as low for integrity and availability; the attac...

CVE-2024-44117

CVE-2024-44117 describes a vulnerability in SAP NetWeaver AS ABAP/ABAP Platform where an RFC-enabled function module allows a low-privileged user to perform actions such as modifying the URLs of any user’s favourite nodes and workbook ID. The published metrics indicate a low impact on integrity a...

CVE-2024-44117 Multiple vulnerabilities in SAP NetWeaver Application Server for ABAP and ABAP Platform

The RFC enabled function module allows a low privileged user to perform various actions, such as modifying the URLs of any user's favourite nodes and workbook ID. There is low impact on integrity and availability of the application...

CVE-2024-44115

The RFC enabled function module allows a low privileged user to add URLs to any user's workplace favourites. This vulnerability could be utilized to identify usernames and access information about targeted user's workplaces, and nodes. There is low impact on integrity of the application...

CVE-2024-44116

The RFC enabled function module allows a low privileged user to add any workbook to any user's workplace favourites. This vulnerability could be utilized to identify usernames and access information about targeted user's workplaces. There is low impact on integrity of the application...

CVE-2024-42380

The RFC enabled function module allows a low privileged user to read any user's workplace favourites and user menu along with all the specific data of each node. Usernames can be enumerated by exploiting vulnerability. There is low impact on confidentiality of the application...

CVE-2024-44115

The CVE-2024-44115 issue affects SAP NetWeaver AS ABAP/ABAP Platform via an RFC-enabled function module that allows a low-privileged user to add URLs to any user’s workplace Favourites. This can enable gathering usernames and access information about targeted users’ workplaces and nodes, with low...