Directory Traversal in the RCCF engines, SAP security note 1504445

Description

The Control and Communication Framework contains a vulnerability through which a malicious user can potentially write arbitrary files on the remote server, possibly corrupting data or altering system behavior.

Available fix and Supported packages

SCM_BASIS | 510 | 510
SCM_BASIS | 700 | 700
SCM_BASIS | 701 | 701
SCM_BASIS 701 | SAPK-70102INSCMBASIS |
SCM_BASIS 510 | SAPK-51018INSCMBASIS |
SCM_BASIS 700 | SAPK-70009INSCMBASIS |

Affected component

CVSS

Score: 0

Exploit

Detailed vulnerability information added to RedRays Security Platform. Contact [email protected] for details.

URL

https://launchpad.support.sap.com/#/notes/1504445

Arpine Maghakyan

Directory Traversal in the RCCF engines, SAP security note 1504445

Description

Available fix and Supported packages

Affected component

CVSS

Exploit

URL

TAGS

#directory
#traversal
#SCM-optimizer
#RCCF
#Remote-Control-Communication-Framework

More to explorer

SAP Security Patch Day – April 2024

SAP Security Patch Day – March 2024

SAP Cloud Connector Certificate Validation Issue

Critical XSS Vulnerability Identified in SAP NetWeaver AS Java

Arpine Maghakyan

Directory Traversal in the RCCF engines, SAP security note 1504445

Description

Available fix and Supported packages

Affected component

CVSS

Exploit

URL

TAGS

#directory#traversal#SCM-optimizer#RCCF#Remote-Control-Communication-Framework

More to explorer

SAP Security Patch Day – April 2024

SAP Security Patch Day – March 2024

SAP Cloud Connector Certificate Validation Issue

Critical XSS Vulnerability Identified in SAP NetWeaver AS Java

#directory
#traversal
#SCM-optimizer
#RCCF
#Remote-Control-Communication-Framework