Sap Shared Service Framework — known CVE vulnerabilities
Every CVE whose affected-product data names Sap Shared Service Framework, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2024-42376 — CVSS 6.5 (medium): SAP Shared Service Framework does not perform necessary authorization check for an authenticated user, resulting in escalation of…
CVE-2024-42377 — CVSS 4.3 (medium): SAP shared service framework allows an authenticated non-administrative user to call a remote-enabled function, which will allow them to…