SAP NetWeaver AS for Java allows an authorized attacker to obtain sensitive information. The attacker could obtain the username and password when creating an RFC destination. After successful exploitation, an attacker can read the sensitive information but cannot modify or delete the data.
References
Configurations
No configuration.
History
10 Sep 2024, 12:09
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
10 Sep 2024, 05:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-09-10 05:15
Updated : 2024-09-10 12:09
NVD link : CVE-2024-45283
Mitre link : CVE-2024-45283
CVE.ORG link : CVE-2024-45283
JSON object : View
Products Affected
No product.
CWE
CWE-256
Unprotected Storage of Credentials