Vulnerabilities > CVE-2024-28164 - Unspecified vulnerability in SAP Netweaver Application Server Java Gpcore7.5

CVSS 5.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

sap

NVD

Published: 2024-06-11

Updated: 2024-08-06

Summary

SAP NetWeaver AS Java (CAF - Guided Procedures) allows an unauthenticated user to access non-sensitive information about the server which would otherwise be restricted causing low impact on confidentiality of the application.

Vulnerable Configurations

Part	Description	Count
Application	Sap SAP Netweaver Application Server Java Gp-Core_7.5	1

References

https://me.sap.com/notes/3425571
https://support.sap.com/en/my-support/knowledge-base/security-notes-news.html