SAP CommonCryptoLib allows an unauthenticated attacker to craft a request, which when submitted to an open port causes a memory corruption error in a library which in turn causes the target component to crash making it unavailable. There is no ability to view or modify any information.
Metrics
Affected Vendors & Products
References
History
Thu, 26 Sep 2024 19:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-476 |
Thu, 26 Sep 2024 18:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | SAP CommonCryptoLib allows an unauthenticated attacker to craft a request, which when submitted to an open port causes a memory corruption error in a library which in turn causes the target component to crash making it unavailable. There is no ability to view or modify any information. | SAP CommonCryptoLib allows an unauthenticated attacker to craft a request, which when submitted to an open port causes a memory corruption error in a library which in turn causes the target component to crash making it unavailable. There is no ability to view or modify any information. |
Weaknesses | CWE-787 |
Thu, 26 Sep 2024 15:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: sap
Published: 2023-09-12T01:21:15.083Z
Updated: 2024-09-26T18:22:53.534Z
Reserved: 2023-08-14T07:36:04.796Z
Link: CVE-2023-40308
Vulnrichment
Updated: 2024-08-02T18:31:53.082Z
NVD
Status : Modified
Published: 2023-09-12T02:15:12.610
Modified: 2024-11-21T08:19:12.393
Link: CVE-2023-40308
Redhat
No data.