Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
[CVE-2024-39600] Information Disclosure vulnerability in SAP GUI for Windows
Vulnerability Description
Under certain conditions, the memory of SAP GUI for Windows contains the password used to log on to an SAP system, which might allow an attacker to get hold of the password and impersonate the affected user. As a result, it has a high impact on the confidentiality but there is no impact on the integrity and availability.
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:N/A:N
Vulnerability Type
信息暴露
Vulnerability Title
SAP GUI 信息泄露漏洞
Vulnerability Description
SAP GUI是德国思爱普(SAP)公司的一个应用软件。SAP系统的图形用户界面。 SAP GUI for Windows 存在信息泄露漏洞,该漏洞源于在某些条件下,内存包含用于登录SAP系统的密码,可能允许攻击者获取密码并冒充受影响的用户,对机密性有高影响,但对完整性和可用性无影响。
CVSS Information
N/A
Vulnerability Type
N/A