cvedb.io
CVE-2024-42373
MEDIUM · CVSS 4.3
EPSS exploitation probability: 0%
Published 2024-08-13T05:15:13.800 · Last modified 2026-06-17T07:49:20.900

Summary

SAP Student Life Cycle Management (SLcM) fails to conduct proper authorization checks for authenticated users, leading to the potential escalation of privileges. On successful exploitation it could allow an attacker to delete non-sensitive report variants that are typically restricted, causing minimal impact on the integrity of the application.

Affected products

sap — student_life_cycle_management

Does this affect you?

Add your gear to cvedb and we'll alert you only when sap ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.