CVE-2024-22125
CVSS 3.1 Score 7.5 of 10 (high)
Details
Published Jan 9, 2024
Updated: Jan 12, 2024
CWE ID 497
Summary
CVE-2024-22125 is a vulnerability affecting the SAP GUI connector for Microsoft Edge browser extension, version 1.0. This issue grants attackers unauthorized access to highly sensitive information, bypassing normal restrictions, resulting in a significant confidentiality breach. Under specific conditions, the extension allows the attacker to gain access to normally restricted data within the Microsoft Edge browser, posing a serious threat to organizations and users.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- SAP SE