Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
[CVE-2024-39593] Information Disclosure vulnerability in SAP Landscape Management
Vulnerability Description
SAP Landscape Management allows an authenticated user to read confidential data disclosed by the REST Provider Definition response. Successful exploitation can cause high impact on confidentiality of the managed entities.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:L/A:N
Vulnerability Type
信息暴露
Vulnerability Title
SAP Landscape Management 信息泄露漏洞
Vulnerability Description
SAP Landscape Management是德国思爱普(SAP)公司的一套SAP产品集中管理系统。该系统主要用于集中管理和配置在物理、虚拟和云基础架构中运行的SAP软件系统。 SAP Landscape Management存在信息泄露漏洞,该漏洞源于允许经过身份验证的用户读取REST Provider Definition响应中披露的机密数据,成功利用可能导致对受管理实体的机密性产生高影响。
CVSS Information
N/A
Vulnerability Type
N/A