Analysis Summary

CVE-2024-37174 CVSS:6.1

SAP CRM is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using a specially crafted URL to execute script in a victim's Web browser within the security context of the hosting Web site, once the URL is clicked. An attacker could use this vulnerability to steal the victim's cookie-based authentication credentials.

CVE-2024-39597 CVSS:7.2

SAP Commerce could allow a remote attacker to bypass security restrictions, caused by a flaw in the forgotten password function. By sending a specially crafted request, an attacker could exploit this vulnerability to gain access to a Composable Storefront B2B site for which early login and registration is activated.

CVE-2024-37175 CVSS:4.3

SAP CRM could allow a remote authenticated attacker to gain elevated privileges on the system, caused by improper authorization validation. By sending a specially crafted request, an authenticated attacker could exploit this vulnerability to gain elevated privileges to read sensitive information.

CVE-2024-39598 CVSS:5

SAP CRM is vulnerable to server-side request forgery, caused by improper input validation. By sending specially crafted HTTP requests, an attacker could exploit this vulnerability to conduct SSRF attack to enumerate accessible HTTP endpoints.

CVE-2024-37172 CVSS:5.4

SAP S/4HANA Finance could allow a remote authenticated attacker to gain elevated privileges on the system, caused by improper authorization validation. By sending a specially crafted request, an authenticated attacker could exploit this vulnerability to gain elevated privileges.

CVE-2024-37180 CVSS:4.1

SAP NetWeaver Application Server for ABAP and ABAP Platform could allow a remote authetnicated attacker to obtain sensitive information, caused by improper authorization validation. By sending a specially crafted request, an attacker could exploit this vulnerability to obtain sensitive information, and use this information to launch further attacks against the affected system.

CVE-2024-39595 CVSS:5.4

SAP Business Warehouse is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote authenticated attacker could exploit this vulnerability to inject malicious script into a Web page which would be executed in a victim's Web browser within the security context of the hosting Web site, once the page is viewed. An attacker could use this vulnerability to steal the victim's cookie-based authentication credentials.

CVE-2024-34685 CVSS:6.1

SAP NetWeaver Knowledge Management XMLEditor is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using a specially crafted URL to execute script in a victim's Web browser within the security context of the hosting Web site, once the URL is clicked. An attacker could use this vulnerability to steal the victim's cookie-based authentication credentials.

CVE-2024-39593 CVSS:6.9

SAP Landscape Management could allow a remote authenticated attacker to obtain sensitive information, caused by a flaw in the the REST Provider Definition response. By sending a specially crafted request, an attacker could exploit this vulnerability to obtain sensitive information, and use this information to launch further attacks against the affected system.

Impact

• Cross-Site Scripting
• Security Bypass
• Privilege Escalation
• Gain Access
• Information Disclosure

Indicators of Compromise

CVE

• CVE-2024-37174
• CVE-2024-39597
• CVE-2024-37175
• CVE-2024-39598
• CVE-2024-37172
• CVE-2024-37180
• CVE-2024-39595
• CVE-2024-34685
• CVE-2024-39593

Affected Vendors

Remediation

Current SAP customers should refer to SAP Security Document for patch information, available from the SAP Website.

CVE-2024-37174

CVE-2024-39597

CVE-2024-37175

CVE-2024-39598

CVE-2024-37172

CVE-2024-37180

CVE-2024-39595

CVE-2024-34685

CVE-2024-39593