The RFC enabled function module allows a low privileged user to read any user's workplace favourites and user menu along with all the specific data of each node. Usernames can be enumerated by exploiting vulnerability. There is low impact on confidentiality of the application.
References
Configurations
No configuration.
History
10 Sep 2024, 12:09
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
10 Sep 2024, 03:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-09-10 03:15
Updated : 2024-09-10 12:09
NVD link : CVE-2024-42380
Mitre link : CVE-2024-42380
CVE.ORG link : CVE-2024-42380
JSON object : View
Products Affected
No product.
CWE
CWE-862
Missing Authorization