THREATINT

We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Zendesk (Helpdesk and Chat)

Ok

PUBLISHED

CVE-2024-33000

Missing Authorization check in SAP Bank Account Management

Reserved:2024-04-23
Published:2024-05-14
Updated:2024-05-14

Description

SAP Bank Account Management does not perform necessary authorization check for an authorized user, resulting in escalation of privileges. As a result, it has a low impact to confidentiality to the system.



LOW: 3.5CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N

Problem types

CWE-862: Missing Authorization

Product status

Default status
unaffected

100
affected

101
affected

102
affected

103
affected

104
affected

105
affected

106
affected

107
affected

108
affected

References

https://me.sap.com/notes/3392049

https://support.sap.com/en/my-support/knowledge-base/security-notes-news.html

cve.org CVE-2024-33000

nvd.nist.gov CVE-2024-33000

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-33000