- Description
- An unauthenticated attacker can create a malicious link which they can make publicly available. When an authenticated victim clicks on this malicious link, input data will be used by the web site page generation to create content which when executed in the victim's browser (XXS) or transmitted to another server (SSRF) gives the attacker the ability to execute arbitrary code on the server fully compromising confidentiality, integrity and availability.
- Source
- cna@sap.com
- NVD status
- Deferred
CVSS 3.1
- Type
- Secondary
- Base score
- 8.8
- Impact score
- 5.9
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
- Severity
- HIGH
- cna@sap.com
- CWE-791
- Hype score
- Not currently trending
CVE-2024-47590 (CVSS:8.8, HIGH) is Awaiting Analysis. An unauthenticated attacker can create a malicious link which they can make publicly available. When an authenticated vi..https://t.co/MhFYMBhSM6 #cybersecurityawareness #cybersecurity #CVE #infosec #hacker #nvd #mitre
@cracbot
17 Nov 2024
8 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🔴New vulnerability was just published🔴 CVE ➡️ CVE-2024-47590 Impacting ➡️ SAP CVSS ➡️ 8.8 #cve #securitricks #vulnerability #cybersecurity https://t.co/j82NMeaDTH
@SecuriTricks
12 Nov 2024
9 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
A severe vulnerability was disclosed for SAP Web Dispatcher (CVE-2024-47590) https://t.co/mGHNKE7LBY
@vuldb
12 Nov 2024
42 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-47590 An unauthenticated attacker can create a malicious link which they can make publicly available. When an authenticated victim clicks on this malicious link, input data… https://t.co/oLJShr9W3S
@CVEnew
12 Nov 2024
444 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes