SAP Bank Account Management (BAM) allows an authenticated user with restricted access to use functions which can result in escalation of privileges with low impact on confidentiality, integrity and availability of the application.

Metrics

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Affected Vendors & Products

Vendors Products
Sap
  • Bank Account Management

Configuration 1 [-]

OR cpe:2.3:a:sap:bank_account_management:s4core_100:*:*:*:*:*:*:*
cpe:2.3:a:sap:bank_account_management:s4core_101:*:*:*:*:*:*:*
cpe:2.3:a:sap:bank_account_management:sap_fin_618:*:*:*:*:*:*:*
cpe:2.3:a:sap:bank_account_management:sap_fin_730:*:*:*:*:*:*:*

No data.

References
Link Providers
https://me.sap.com/notes/2637727 cve-icon cve-icon
https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html cve-icon cve-icon
History

Wed, 16 Oct 2024 21:45:00 +0000

Type Values Removed Values Added
First Time appeared Sap
Sap bank Account Management
CPEs cpe:2.3:a:sap:bank_account_management:s4core_100:*:*:*:*:*:*:*
cpe:2.3:a:sap:bank_account_management:s4core_101:*:*:*:*:*:*:*
cpe:2.3:a:sap:bank_account_management:sap_fin_618:*:*:*:*:*:*:*
cpe:2.3:a:sap:bank_account_management:sap_fin_730:*:*:*:*:*:*:*
Vendors & Products Sap
Sap bank Account Management
cve-icon MITRE

Status: PUBLISHED

Assigner: sap

Published: 2024-02-13T02:34:17.247Z

Updated: 2024-08-01T23:28:12.038Z

Reserved: 2024-01-29T05:13:46.617Z

Link: CVE-2024-24739

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2024-02-13T03:15:08.780

Modified: 2024-10-16T21:20:37.827

Link: CVE-2024-24739

cve-icon Redhat

No data.