- Description
- In certain conditions, SAP NetWeaver Application Server ABAP allows an authenticated attacker to craft a Remote Function Call (RFC) request to restricted destinations, which can be used to expose credentials for a remote service. These credentials can then be further exploited to completely compromise the remote service, potentially resulting in a significant impact on the confidentiality, integrity, and availability of the application.
- Source
- cna@sap.com
- NVD status
- Received
CVSS 3.1
- Type
- Secondary
- Base score
- 8.5
- Impact score
- 6
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
- Severity
- HIGH
- cna@sap.com
- CWE-914
- Hype score
- Not currently trending
CVE-2024-54198 In certain conditions, SAP NetWeaver Application Server ABAP allows an authenticated attacker to craft a Remote Function Call (RFC) request to restricted destinations… https://t.co/KHhZvn63tS
@CVEnew
10 Dec 2024
134 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2024-54198: HIGH] SAP NetWeaver ABAP Server vulnerability allows attackers to expose credentials & compromise remote services, impacting confidentiality, integrity, & availability.#cybersecurity,#vulnerability https://t.co/AoY70xE3gv https://t.co/YCS0fs6Uft
@CveFindCom
10 Dec 2024
72 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes