CVE-2023-40309

Name of the Vulnerable Software and Affected Versions SAP CommonCryptoLib (affected versions not specified)

Description The issue is related to insufficient authorization checks in the SAP CommonCryptoLib library. This can lead to an escalation of privileges, allowing a remote attacker to read, modify, or delete data with restricted access. Depending on the application and the level of privileges acquired, an attacker could abuse functionality restricted to a particular user group.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.