PT-2024-30956 · Sap · Sap Business Warehouse
Published
2024-09-09
·
Updated
2024-09-10
·
CVE-2024-44113
CVSS v3.1
4.3
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
SAP Business Warehouse (BEx Analyzer) (affected versions not specified)
Description
The issue is related to missing authorization checks in SAP Business Warehouse (BEx Analyzer), allowing an authenticated attacker to access restricted information over the network. Successful exploitation can lead to the enumeration of information, causing a limited impact on the confidentiality of the application.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Missing Authorization
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Sap Business Warehouse