CWE
400
Advisory Published
Updated

CVE-2024-33001: Denial of service (DOS) in SAP NetWeaver and ABAP platform

First published: Tue Jun 11 2024(Updated: )

SAP NetWeaver and ABAP platform allows an attacker to impede performance for legitimate users by crashing or flooding the service. An impact of this Denial of Service vulnerability might be long response delays and service interruptions, thus degrading the service quality experienced by legitimate users causing high impact on availability of the application.

Credit: cna@sap.com

Affected SoftwareAffected VersionHow to fix
SAP NetWeaver Application Server for ABAP=740
SAP NetWeaver Application Server for ABAP=2008_1_710
SAP NetWeaver Application Server for ABAP=st-pi_2008_1_700

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Frequently Asked Questions

  • What is the severity of CVE-2024-33001?

    CVE-2024-33001 is classified as a Denial of Service vulnerability that can significantly degrade performance and service availability.

  • How do I fix CVE-2024-33001?

    To mitigate CVE-2024-33001, it is recommended to apply the latest security patches provided by SAP for the affected versions of NetWeaver and ABAP.

  • What are the affected versions of SAP software for CVE-2024-33001?

    CVE-2024-33001 affects SAP NetWeaver Application Server for ABAP versions 740, 2008_1_710, and st-pi_2008_1_700.

  • What impact can CVE-2024-33001 have on my systems?

    CVE-2024-33001 can lead to long response delays, frequent service interruptions, and overall degradation of service quality.

  • Is there a workaround for CVE-2024-33001?

    No specific workaround is detailed for CVE-2024-33001; applying security patches is the recommended course of action.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203