CVE-2023-49581

CVSS 3.1 Score 9.4 of 10 (high)

Details

Published Dec 12, 2023

Updated: Jan 16, 2024

CWE ID 89

Summary

CVE-2023-49581 is a vulnerability affecting both SAP GUI for Windows and SAP GUI for Java. This issue permits unauthenticated attackers to access restricted and confidential information, as well as write data to a database table. Consequences of this vulnerability include increased response times for the AS ABAP system, leading to a mild impact on availability. The impact on confidentiality is significant, as attackers can gain unauthorized access to sensitive information.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Sap Netweaver Application Server Abap

Affected Vendors

SAP SE

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tliUYd
https://www.cve.org/CVERecord?id=CVE-2023-49581
https://nvd.nist.gov/vuln/detail/CVE-2023-49581

Back to Vulnerability Database