Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-41736

Under certain conditions SAP Permit to Work allows an authenticated attacker to access information which would otherwise be restricted causing low impact on the confidentiality of the application.

Published

2024-08-13T04:15:09.607

Last Modified

2024-09-12T13:51:42.727

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 4.3 (MEDIUM)

Weaknesses

Type: Secondary
CWE-200
Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	sap	permit_to_work	uis4hop1_800	Yes
Application	sap	permit_to_work	uis4hop1_900	Yes

References

https://me.sap.com/notes/3475427 Permissions Required ([email protected])
https://url.sap/sapsecuritypatchday Vendor Advisory ([email protected])