CVE-2024-47586
Published: 12 November 2024
Summary
CVE-2024-47586 is a medium-severity NULL Pointer Dereference (CWE-476) vulnerability in Sap (inferred from references). Its CVSS base score is 5.3 (Medium).
Operationally, ranked in the top 34.3% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2024-42532
Vulnerability details
SAP NetWeaver Application Server for ABAP and ABAP Platform allows an unauthenticated attacker to send a maliciously crafted http request which could cause a null pointer dereference in the kernel. This dereference will result in the system crashing and rebooting,…
more
causing the system to be temporarily unavailable. There is no impact on Confidentiality or Integrity.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.