Vulnerabilities > CVE-2023-39436 - Unspecified vulnerability in SAP Supplier Relationship Management

CVSS 5.8 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

sap

NVD

Published: 2023-08-08

Updated: 2024-11-21

Summary

SAP Supplier Relationship Management -versions 600, 602, 603, 604, 605, 606, 616, 617, allows an unauthorized attacker to discover information relating to SRM within Vendor Master Data for Business Partners replication functionality.This information could be used to allow the attacker to specialize their attacks against SRM.

Vulnerable Configurations

Part	Description	Count
Application	Sap SAP Supplier Relationship Management 600 SAP Supplier Relationship Management 602 SAP Supplier Relationship Management 603 SAP Supplier Relationship Management 604 SAP Supplier Relationship Management 605 SAP Supplier Relationship Management 606 SAP Supplier Relationship Management 616 SAP Supplier Relationship Management 617	8

Summary

Vulnerable Configurations

References