Vulnerabilities > CVE-2024-22125 - Unspecified vulnerability in SAP GUI Connector 1.0

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

sap

NVD

Published: 2024-01-09

Updated: 2024-01-12

Summary

Under certain conditions the Microsoft Edge browser extension (SAP GUI connector for Microsoft Edge) - version 1.0, allows an attacker to access highly sensitive information which would otherwise be restricted causing high impact on confidentiality.

Vulnerable Configurations

Part	Description	Count
Application	Sap SAP GUI Connector 1.0	1

References

https://me.sap.com/notes/3386378
https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html