Vulnerabilities (CVE)

Filtered by vendor Sap Subscribe
Filtered by product Student Life Cycle Management
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-34690 1 Sap 1 Student Life Cycle Management 2024-11-21 N/A 5.4 MEDIUM
SAP Student Life Cycle Management (SLcM) fails to conduct proper authorization checks for authenticated users, leading to the potential escalation of privileges. On successful exploitation it could allow an attacker to access and edit non-sensitive report variants that are typically restricted, causing minimal impact on the confidentiality and integrity of the application.
CVE-2024-42373 1 Sap 1 Student Life Cycle Management 2024-09-12 N/A 5.4 MEDIUM
SAP Student Life Cycle Management (SLcM) fails to conduct proper authorization checks for authenticated users, leading to the potential escalation of privileges. On successful exploitation it could allow an attacker to delete non-sensitive report variants that are typically restricted, causing minimal impact on the integrity of the application.