admin/cve
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00
Code Issues Packages Projects Releases Wiki Activity
cve/2024/CVE-2024-34683.md

18 lines
799 B
Markdown
Raw Permalink Normal View History

Update CVE sources 2024-08-10 19:04
2024-08-10 19:04:30 +00:00
### [CVE-2024-34683](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-34683)
![](https://img.shields.io/static/v1?label=Product&message=SAP%20Document%20Builder&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3D%20S4CORE%20100%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-434%3A%20Unrestricted%20Upload%20of%20File%20with%20Dangerous%20Type&color=brighgreen)
### Description
An authenticated attacker can upload maliciousfile to SAP Document Builder service. When the victim accesses this file, theattacker is allowed to access, modify, or make the related informationunavailable in the victims browser.
### POC
#### Reference
No PoCs from references.
#### Github
- https://github.com/fkie-cad/nvd-json-data-feeds
Reference in New Issue Copy Permalink