PT-2024-4592 · Sap · Sap Netweaver As Java
Published
2024-05-07
·
Updated
2024-08-09
·
CVE-2024-34688
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions:
SAP NetWeaver AS Java (affected versions not specified)
Description:
The issue is related to unrestricted access to the Meta Model Repository services in SAP NetWeaver AS Java, allowing attackers to perform Denial of Service (DoS) attacks on the application. This can prevent legitimate users from accessing it, resulting in a high impact on the application's availability but no impact on confidentiality and integrity.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Resource Exhaustion
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Sap Netweaver As Java