CVE-2024-34683
Unrestricted file upload in SAP Document Builder (HTTP service)
An authenticated attacker can upload malicious
file to SAP Document Builder service. When the victim accesses this file, the
attacker is allowed to access, modify, or make the related information
unavailable in the victim’s browser.
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L
Productos afectados
SAP_SE · SAP Document Builder¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →