CVE-2024-33008

Published: May 14, 2024Modified: Nov 21, 2024

4.9

Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

Exploitability: 1.2 / Impact: 3.6

Source: CNA (Secondary)

Description

SAP Replication Server allows an attacker to use gateway for executing some commands to RSSD. This could result in crashing the Replication Server due to memory corruption with high impact on Availability of the system.

Related CWEs

CWE-787

Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

References (4)

https://me.sap.com/notes/3349468

Source: cna@sap.com

https://support.sap.com/en/my-support/knowledge-base/security-notes-news.html

Source: cna@sap.com

https://me.sap.com/notes/3349468

Source: af854a3a-2127-422b-91ae-364da2661108

https://support.sap.com/en/my-support/knowledge-base/security-notes-news.html

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.