Vulnerability Database

290,020

Total vulnerabilities in the database

CVE-2024-27900

Due to missing authorization check, attacker with business user account in SAP ABAP Platform - version 758, 795, can change the privacy setting of job templates from shared to private. As a result, the selected template would only be accessible to the owner.

  • Published: Mar 12, 2024
  • Updated: May 4, 2025
  • CVE: CVE-2024-27900
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 5.3
  • AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

CWEs:

Software From Fixed in
sap / abap_platform 758 758.x
sap / abap_platform 795 795.x