12 matches found
CVE-2024-39591
SAP Document Builder does not perform necessary authorization checks for one of the function modules resulting in escalation of privileges causing low impact on confidentiality of the application...
EUVD-2024-34982
Malicious code in bioql PyPI...
CVE-2024-34683
An authenticated attacker can upload malicious file to SAP Document Builder service. When the victim accesses this file, the attacker is allowed to access, modify, or make the related information unavailable in the victim’s browser...
SAP Document Builder Authorization Issues Vulnerability
SAP Document Builder is a content-driven cross-application solution from SAP. An authorization issue vulnerability exists in SAP Document Builder that stems from not performing required authorization checks for certain modules. An attacker could exploit the vulnerability to cause unauthorized...
CVE-2024-39591
SAP Document Builder does not perform necessary authorization checks for one of the function modules resulting in escalation of privileges causing low impact on confidentiality of the application...
SAP Document Builder 安全漏洞
SAP Document Builder is a content-driven cross-application solution from SAP. An authorization issue vulnerability exists in SAP Document Builder that stems from not performing required authorization checks for certain modules. An attacker could exploit the vulnerability to cause unauthorized...
PT-2024-28546 · Sap · Sap Document Builder
Name of the Vulnerable Software and Affected Versions: SAP Document Builder affected versions not specified Description: The issue is related to insufficient authorization checks in one of the function modules of SAP Document Builder, leading to escalation of privileges. This results in a low...
CVE-2024-34683
An authenticated attacker can upload malicious file to SAP Document Builder service. When the victim accesses this file, the attacker is allowed to access, modify, or make the related information unavailable in the victim’s browser...
CVE-2024-34683
An authenticated attacker can upload malicious file to SAP Document Builder service. When the victim accesses this file, the attacker is allowed to access, modify, or make the related information unavailable in the victim’s browser...
CVE-2024-34683
CVE-2024-34683 describes an authenticated file upload vulnerability in SAP Document Builder. A logged-in attacker can upload a malicious file; when a victim accesses that file, the attacker may gain access to, modify, or render information unavailable in the victim’s browser. Document sources con...
CVE-2024-34683 Unrestricted file upload in SAP Document Builder (HTTP service)
An authenticated attacker can upload malicious file to SAP Document Builder service. When the victim accesses this file, the attacker is allowed to access, modify, or make the related information unavailable in the victim’s browser...
CVE-2024-34683 Unrestricted file upload in SAP Document Builder (HTTP service)
An authenticated attacker can upload malicious file to SAP Document Builder service. When the victim accesses this file, the attacker is allowed to access, modify, or make the related information unavailable in the victim’s browser...