Overview
- Description
- An unauthenticated attacker can create a malicious link which they can make publicly available. When an authenticated victim clicks on this malicious link, input data will be used by the web site page generation to create content which when executed in the victim's browser (XXS) or transmitted to another server (SSRF) gives the attacker the ability to execute arbitrary code on the server fully compromising confidentiality, integrity and availability.
- Source
- cna@sap.com
- NVD status
- Awaiting Analysis
Risk scores
CVSS 3.1
- Type
- Secondary
- Base score
- 8.8
- Impact score
- 5.9
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
- Severity
- HIGH
Weaknesses
- cna@sap.com
- CWE-791
Social media
Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.
- Hype score
1
CVE-2024-47590 (CVSS:8.8, HIGH) is Awaiting Analysis. An unauthenticated attacker can create a malicious link which they can make publicly available. When an authenticated vi..https://t.co/MhFYMBhSM6 #cybersecurityawareness #cybersecurity #CVE #infosec #hacker #nvd #mitre
@cracbot
17 Nov 2024
8 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🔴New vulnerability was just published🔴 CVE ➡️ CVE-2024-47590 Impacting ➡️ SAP CVSS ➡️ 8.8 #cve #securitricks #vulnerability #cybersecurity https://t.co/j82NMeaDTH
@SecuriTricks
12 Nov 2024
9 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
A severe vulnerability was disclosed for SAP Web Dispatcher (CVE-2024-47590) https://t.co/mGHNKE7LBY
@vuldb
12 Nov 2024
42 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-47590 An unauthenticated attacker can create a malicious link which they can make publicly available. When an authenticated victim clicks on this malicious link, input data… https://t.co/oLJShr9W3S
@CVEnew
12 Nov 2024
444 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes