Potential information disclosure relating to CRM EP, SAP security note 1554295

Description

A malicious user can discover information relating to the CRM portal integration who uses CRMFND software component. This information could be used to allow the malicious user to specialize their attacks against the CRM portal integration and the CRMFND software component.

Available fix and Supported packages

BP_CRM50 | 6.0 | 6.0
CRMFND | 700 | 700
CRMFND | 701 | 701
CRMFND | 731 | 731
BP CRM FOUNDATION CODG 7.31 | SP000 | 000000
BP CRM FOUNDATION CODING 7.0 | SP008 | 000003
BP CRM FOUNDATION CODING 7.0 | SP009 | 000001
BP CRM FOUNDATION CODING 7.01 | SP004 | 000001
BP SAP CRM 6.0 (NEW) | SP007 | 000003
BP SAP CRM 6.0 (NEW) | SP008 | 000001

Affected component

CVSS

Score: 0

PoC

Detailed vulnerability information added to RedRays Security Platform. Contact [email protected] for details.

URL

https://launchpad.support.sap.com/#/notes/1554295

Vahagn Vardanian

Potential information disclosure relating to CRM EP, SAP security note 1554295

Description

Available fix and Supported packages

Affected component

CVSS

PoC

URL

TAGS

#Information-disclosure
#portal-integration.

Explore More

Redis CVE-2024-31449: How to Reproduce and Mitigate the Vulnerability

Reproducing CVE-2024-10979: A Step-by-Step Guide

SAP Security Patch Day – November 2024

How the SAP Penetration Testing Process at RedRays Works

Vahagn Vardanian

Potential information disclosure relating to CRM EP, SAP security note 1554295

Description

Available fix and Supported packages

Affected component

CVSS

PoC

URL

TAGS

#Information-disclosure#portal-integration.

Explore More

Redis CVE-2024-31449: How to Reproduce and Mitigate the Vulnerability

Reproducing CVE-2024-10979: A Step-by-Step Guide

SAP Security Patch Day – November 2024

How the SAP Penetration Testing Process at RedRays Works

Special offer for SAP Security Udemy course!

$ 9.99

#Information-disclosure
#portal-integration.