Vulnerabilities > SAP > Document Builder > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-13 | CVE-2024-39591 | Missing Authorization vulnerability in SAP Document Builder SAP Document Builder does not perform necessary authorization checks for one of the function modules resulting in escalation of privileges causing low impact on confidentiality of the application. | 5.3 |
| 2024-06-11 | CVE-2024-34683 | Unrestricted Upload of File with Dangerous Type vulnerability in SAP Document Builder An authenticated attacker can upload malicious file to SAP Document Builder service. | 6.5 |