CVE-2024-45283 Information

Description

SAP NetWeaver AS for Java allows an authorized attacker to obtain sensitive information. The attacker could obtain the username and password when creating an RFC destination. After successful exploitation an attacker can read the sensitive information but cannot modify or delete the data.

Reference

https://me.sap.com/notes/3477359 https://url.sap/sapsecuritypatchday https://url.sap/sapsecuritypatchday