How severe is CVE-2024-47593?

Medium severity. CVSS v3 base score is 4.3 out of 10.

Vulnerability in Sap_se Sap Netweaver Application Server Abap

CVE-2024-47593

SAP NetWeaver Application Server ABAP allows an unauthenticated attacker with network access to read files from the server, which otherwise would be restricted.This attack is possible only if a Web Dispatcher or some sort of Proxy Server i…

EPSS: 0.002 (44.7th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 4.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N.

Affected products

Sap_se Sap Netweaver Application Server Abap — versions KRNL64UC 7.53, KERNEL 7.53, 7.54

References

me.sap.com/notes/3508947
url.sap/sapsecuritypatchday

Frequently asked questions

What is CVE-2024-47593?: CVE-2024-47593 is a medium-severity vulnerability in Sap_se Sap Netweaver Application Server Abap. CVSS score: 4.3/10. Published 2024-11-12.
How severe is CVE-2024-47593?: Medium severity. CVSS v3 base score is 4.3 out of 10.