CVE-2024-22125

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jan 9, 2024
Updated: Jan 12, 2024
CWE ID 497

Summary

CVE-2024-22125 is a vulnerability affecting the SAP GUI connector for Microsoft Edge browser extension, version 1.0. This issue grants attackers unauthorized access to highly sensitive information, bypassing normal restrictions, resulting in a significant confidentiality breach. Under specific conditions, the extension allows the attacker to gain access to normally restricted data within the Microsoft Edge browser, posing a serious threat to organizations and users.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share