CVE-2024-39596 Information

Description

Due to missing authorization checks SAP Enable Now allows an author to escalate privileges to access information which should otherwise be restricted. On successful exploitation the attacker can cause limited impact on confidentiality of the application.

Reference

https://url.sap/sapsecuritypatchday https://url.sap/sapsecuritypatchday https://me.sap.com/notes/3476348