Vulnerabilities > CVE-2023-49578 - Unspecified vulnerability in SAP Cloud Connector 2.0

CVSS 3.5 - LOW

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

LOW

low complexity

sap

NVD

Published: 2023-12-12

Updated: 2024-11-21

Summary

SAP Cloud Connector - version 2.0, allows an authenticated user with low privilege to perform Denial of service attack from adjacent UI by sending a malicious request which leads to low impact on the availability and no impact on confidentiality or Integrity of the application.

Vulnerable Configurations

Part	Description	Count
Application	Sap SAP Cloud Connector 2.0	1

References

https://me.sap.com/notes/3362463
https://me.sap.com/notes/3362463
https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html
https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html