CVE-2024-41737

Name of the Vulnerable Software and Affected Versions SAP CRM ABAP (affected versions not specified)

Description The issue is related to insufficient checking of incoming HTTP requests in the Insights Management component of the SAP CRM ABAP integration module. This can allow a remote attacker to perform a Server-Side Request Forgery (SSRF) attack by specially crafting HTTP requests, potentially leading to information disclosure. The attack requires authentication and has no impact on the integrity and availability of the application.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.