CVE-2024-21735
Last modified
CVE-2024-21735 is a high-severity vulnerability rated 7.2/10 on the CVSS scale. SAP LT Replication Server - version S4CORE 103, S4CORE 104, S4CORE 105, S4CORE 106, S4CORE 107, S4CORE 108, does not perform necessary authorization checks. This could allow an attacker with high privileges to perform unintended actions, resulting in escalation of privileges, which has High impact on confidentiality, integrity and availability of the system. . EPSS estimates a 0.40% chance of exploitation in the next 30 days.
Description
SAP LT Replication Server - version S4CORE 103, S4CORE 104, S4CORE 105, S4CORE 106, S4CORE 107, S4CORE 108, does not perform necessary authorization checks. This could allow an attacker with high privileges to perform unintended actions, resulting in escalation of privileges, which has High impact on confidentiality, integrity and availability of the system.
Metrics
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Sap | Lt Replication Server | s4core_103 |
| Sap | Lt Replication Server | s4core_104 |
| Sap | Lt Replication Server | s4core_105 |
| Sap | Lt Replication Server | s4core_106 |
| Sap | Lt Replication Server | s4core_107 |
| Sap | Lt Replication Server | s4core_108 |
References
- https://me.sap.com/notes/3407617Permissions Required
- https://me.sap.com/notes/3407617Permissions Required
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2024-21735?
How severe is CVE-2024-21735?
How do I fix CVE-2024-21735?
Are you affected by CVE-2024-21735?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST