CVE-2024-47595

Local Privilege Escalation in SAP Host Agent

CVSS 6.3 MEDIUMEPSS 0.1%CWE-266

An attacker who gains local membership to sapsys group could replace local files usually protected by privileged access. On successful exploitation the attacker could cause high impact on confidentiality and integrity of the application.

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

Affected products

SAP_SE · SAP Host Agent

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://me.sap.com/notes/3509619 https://url.sap/sapsecuritypatchday