CVE-2024-42372 – SAP NetWeaver AS Java System Landscape Directory Missing Authorization Check Vulnerability (Information Disclosure and Manipulation)

CVE ID : CVE-2024-42372

Published : Nov. 12, 2024, 1:15 a.m. | 1 hour, 2 minutes ago

Description : Due to missing authorization check in SAP NetWeaver AS Java (System Landscape Directory) an unauthorized user can read and modify some restricted global SLD configurations causing low impact on confidentiality and integrity of the application.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-42372 – SAP NetWeaver AS Java System Landscape Directory Missing Authorization Check Vulnerability (Information Disclosure and Manipulation)