CVE-2024-45282

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Oct 8, 2024

Updated: Nov 14, 2024

CWE ID 650

Summary

CVE-2024-45282: A vulnerability has been identified in the Manage Bank Statements application where read-only fields in Bank Statement Drafts can be modified using the MERGE method. This weakness affects the integrity of OData entities, which are assumed to be immutable, leaving them open to external modifications. Despite this, confidentiality and availability remain unaffected.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

SAP S/4HANA

Affected Vendors

SAP SE

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/yFXP-O
https://www.cve.org/CVERecord?id=CVE-2024-45282
https://nvd.nist.gov/vuln/detail/CVE-2024-45282

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners