CVE-2024-37180

Name of the Vulnerable Software and Affected Versions SAP NetWeaver Application Server for ABAP and ABAP Platform (affected versions not specified)

Description The issue allows an attacker to access a remote-enabled function module with no further authorization, which would otherwise be restricted. This can be used to read non-sensitive information, resulting in a low impact on the confidentiality of the application. The vulnerability is related to insufficient protection of service data, which can allow a remote attacker to gain unauthorized access to protected information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.