cvedb.io
CVE-2024-41734
MEDIUM · CVSS 4.3
EPSS exploitation probability: 0%
Published 2024-08-13T05:15:13.587 · Last modified 2026-06-17T07:48:09.380

Summary

Due to missing authorization check in SAP NetWeaver Application Server ABAP and ABAP Platform, an authenticated attacker could call an underlying transaction, which leads to disclosure of user related information. There is no impact on integrity or availability.

Affected products

sap — netweaver_application_server_abap

Does this affect you?

Add your gear to cvedb and we'll alert you only when sap ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.