Severity
Medium
Analysis Summary
CVE-2024-37174 CVSS:6.1
SAP CRM is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using a specially crafted URL to execute script in a victim's Web browser within the security context of the hosting Web site, once the URL is clicked. An attacker could use this vulnerability to steal the victim's cookie-based authentication credentials.
CVE-2024-39597 CVSS:7.2
SAP Commerce could allow a remote attacker to bypass security restrictions, caused by a flaw in the forgotten password function. By sending a specially crafted request, an attacker could exploit this vulnerability to gain access to a Composable Storefront B2B site for which early login and registration is activated.
CVE-2024-37175 CVSS:4.3
SAP CRM could allow a remote authenticated attacker to gain elevated privileges on the system, caused by improper authorization validation. By sending a specially crafted request, an authenticated attacker could exploit this vulnerability to gain elevated privileges to read sensitive information.
CVE-2024-39598 CVSS:5
SAP CRM is vulnerable to server-side request forgery, caused by improper input validation. By sending specially crafted HTTP requests, an attacker could exploit this vulnerability to conduct SSRF attack to enumerate accessible HTTP endpoints.
CVE-2024-37172 CVSS:5.4
SAP S/4HANA Finance could allow a remote authenticated attacker to gain elevated privileges on the system, caused by improper authorization validation. By sending a specially crafted request, an authenticated attacker could exploit this vulnerability to gain elevated privileges.
CVE-2024-37180 CVSS:4.1
SAP NetWeaver Application Server for ABAP and ABAP Platform could allow a remote authetnicated attacker to obtain sensitive information, caused by improper authorization validation. By sending a specially crafted request, an attacker could exploit this vulnerability to obtain sensitive information, and use this information to launch further attacks against the affected system.
CVE-2024-39595 CVSS:5.4
SAP Business Warehouse is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote authenticated attacker could exploit this vulnerability to inject malicious script into a Web page which would be executed in a victim's Web browser within the security context of the hosting Web site, once the page is viewed. An attacker could use this vulnerability to steal the victim's cookie-based authentication credentials.
CVE-2024-34685 CVSS:6.1
SAP NetWeaver Knowledge Management XMLEditor is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using a specially crafted URL to execute script in a victim's Web browser within the security context of the hosting Web site, once the URL is clicked. An attacker could use this vulnerability to steal the victim's cookie-based authentication credentials.
CVE-2024-39593 CVSS:6.9
SAP Landscape Management could allow a remote authenticated attacker to obtain sensitive information, caused by a flaw in the the REST Provider Definition response. By sending a specially crafted request, an attacker could exploit this vulnerability to obtain sensitive information, and use this information to launch further attacks against the affected system.
Impact
- Cross-Site Scripting
- Security Bypass
- Privilege Escalation
- Gain Access
- Information Disclosure
Indicators of Compromise
CVE
- CVE-2024-37174
- CVE-2024-39597
- CVE-2024-37175
- CVE-2024-39598
- CVE-2024-37172
- CVE-2024-37180
- CVE-2024-39595
- CVE-2024-34685
- CVE-2024-39593
Affected Vendors
Affected Products
- SAP NetWeaver AS ABAP 700
- SAP NetWeaver AS ABAP 701
- SAP NetWeaver AS ABAP 702
- SAP NetWeaver AS ABAP 740
- SAP NetWeaver AS ABAP 750
- SAP NetWeaver AS ABAP 751
- SAP NetWeaver AS ABAP 752
- SAP NetWeaver AS ABAP 753
- SAP NetWeaver AS ABAP 754
- SAP NetWeaver AS ABAP 755
- SAP NetWeaver AS ABAP Platform 700
- SAP NetWeaver AS ABAP Platform 702
- SAP NetWeaver AS ABAP Platform 731
- SAP NetWeaver AS ABAP Platform 740
- SAP NetWeaver AS ABAP Platform 750
- SAP NetWeaver AS ABAP Platform 751
- SAP NetWeaver AS ABAP Platform 752
- SAP NetWeaver AS ABAP Platform 753
- SAP NetWeaver AS ABAP Platform 754
- SAP NetWeaver AS ABAP Platform 755
- SAP NetWeaver AS ABAP Platform 756
- SAP NetWeaver AS ABAP 756
- SAP NetWeaver AS ABAP 731
- SAP Commerce HY_COM 2205
- SAP Commerce COM_CLOUD 2211
- SAP CRM S4FND 102
- SAP CRM S4FND 103
- SAP CRM S4FND 104
- SAP CRM S4FND 105
- SAP CRM S4FND 106
- SAP CRM S4FND 107
- SAP CRM WEBCUIF 701
- SAP CRM WEBCUIF 731
- SAP CRM WEBCUIF 746
- SAP CRM WEBCUIF 747
- SAP CRM WEBCUIF 748
- SAP CRM WEBCUIF 800
- SAP CRM WEBCUIF 801
- SAP CRM S4FND 108
- SAP S/4HANA Finance S4CORE 107
- SAP S/4HANA Finance S4CORE 108
- SAP NetWeaver AS ABAP 757
- SAP NetWeaver AS ABAP Platform 757
- SAP NetWeaver AS ABAP 758
- SAP NetWeaver AS ABAP Platform 758
- SAP Business Warehouse 700
- SAP Business Warehouse 701
- SAP Business Warehouse 702
- SAP Business Warehouse 731
- SAP Business Warehouse 740
- SAP Business Warehouse 750
- SAP Business Warehouse 751
- SAP Business Warehouse 752
- SAP Business Warehouse 753
- SAP Business Warehouse 754
- SAP Business Warehouse 755
- SAP Business Warehouse SAP_BW_VIRTUAL_COMP 701
- SAP NetWeaver Knowledge Management XMLEditor KMC-WPC 7.50
- SAP Landscape Management VCM 3.0
Remediation
Current SAP customers should refer to SAP Security Document for patch information, available from the SAP Website.