CVE-2024-21737

Name of the Vulnerable Software and Affected Versions SAP Application Interface Framework File Adapter version 702

Description The issue allows a high privilege user to use a function module to traverse through various layers and execute OS commands directly, controlling the behavior of the application. This leads to considerable impact on confidentiality, integrity, and availability. The vulnerability is related to incorrect code generation management.

Recommendations For SAP Application Interface Framework File Adapter version 702, consider disabling the vulnerable function module until a patch is available to prevent exploitation. Restrict access to sensitive areas of the application to minimize the risk of unauthorized control. At the moment, there is no information about a newer version that contains a fix for this vulnerability.