nvd-json-data-feeds/CVE-2024/CVE-2024-452xx/CVE-2024-45284.json

{
  "id": "CVE-2024-45284",
  "sourceIdentifier": "cna@sap.com",
  "published": "2024-09-10T05:15:12.407",
  "lastModified": "2024-09-10T05:15:12.407",
  "vulnStatus": "Received",
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "An authenticated attacker with high privilege can use functions of SLCM transactions to which access should be restricted. This may result in an escalation of privileges causing low impact on integrity of the application."
    }
  ],
  "metrics": {
    "cvssMetricV31": [
      {
        "source": "cna@sap.com",
        "type": "Secondary",
        "cvssData": {
          "version": "3.1",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N",
          "attackVector": "NETWORK",
          "attackComplexity": "LOW",
          "privilegesRequired": "HIGH",
          "userInteraction": "REQUIRED",
          "scope": "UNCHANGED",
          "confidentialityImpact": "NONE",
          "integrityImpact": "LOW",
          "availabilityImpact": "NONE",
          "baseScore": 2.4,
          "baseSeverity": "LOW"
        },
        "exploitabilityScore": 0.9,
        "impactScore": 1.4
      }
    ]
  },
  "weaknesses": [
    {
      "source": "cna@sap.com",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-862"
        }
      ]
    }
  ],
  "references": [
    {
      "url": "https://me.sap.com/notes/2256627",
      "source": "cna@sap.com"
    },
    {
      "url": "https://url.sap/sapsecuritypatchday",
      "source": "cna@sap.com"
    }
  ]
}
Auto-Update: 2024-09-10T06:00:17.838120+00:00 2024-09-10 06:03:17 +00:00			`{`
			`"id": "CVE-2024-45284",`
			`"sourceIdentifier": "cna@sap.com",`
			`"published": "2024-09-10T05:15:12.407",`
			`"lastModified": "2024-09-10T05:15:12.407",`
			`"vulnStatus": "Received",`
			`"cveTags": [],`
			`"descriptions": [`
			`{`
			`"lang": "en",`
			`"value": "An authenticated attacker with high privilege can use functions of SLCM transactions to which access should be restricted. This may result in an escalation of privileges causing low impact on integrity of the application."`
			`}`
			`],`
			`"metrics": {`
			`"cvssMetricV31": [`
			`{`
			`"source": "cna@sap.com",`
			`"type": "Secondary",`
			`"cvssData": {`
			`"version": "3.1",`
			`"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N",`
			`"attackVector": "NETWORK",`
			`"attackComplexity": "LOW",`
			`"privilegesRequired": "HIGH",`
			`"userInteraction": "REQUIRED",`
			`"scope": "UNCHANGED",`
			`"confidentialityImpact": "NONE",`
			`"integrityImpact": "LOW",`
			`"availabilityImpact": "NONE",`
			`"baseScore": 2.4,`
			`"baseSeverity": "LOW"`
			`},`
			`"exploitabilityScore": 0.9,`
			`"impactScore": 1.4`
			`}`
			`]`
			`},`
			`"weaknesses": [`
			`{`
			`"source": "cna@sap.com",`
			`"type": "Primary",`
			`"description": [`
			`{`
			`"lang": "en",`
			`"value": "CWE-862"`
			`}`
			`]`
			`}`
			`],`
			`"references": [`
			`{`
			`"url": "https://me.sap.com/notes/2256627",`
			`"source": "cna@sap.com"`
			`},`
			`{`
			`"url": "https://url.sap/sapsecuritypatchday",`
			`"source": "cna@sap.com"`
			`}`
			`]`
			`}`