CVE-2024-45284: Missing authorization check in SAP Student Life Cycle Management (SLcM)
First published: Tue Sep 10 2024(Updated: )
An authenticated attacker with high privilege can use functions of SLCM transactions to which access should be restricted. This may result in an escalation of privileges causing low impact on integrity of the application.
Credit: cna@sap.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SAP Student Life Cycle Management |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2024-45284?
CVE-2024-45284 has a low impact on the integrity of the application.
How do I fix CVE-2024-45284?
To fix CVE-2024-45284, apply the latest security patches from SAP for the Student Life Cycle Management software.
Who is affected by CVE-2024-45284?
CVE-2024-45284 affects users of SAP Student Life Cycle Management with high privilege access.
What is the potential impact of CVE-2024-45284?
The potential impact of CVE-2024-45284 is an escalation of privileges for authenticated attackers.
What type of vulnerability is CVE-2024-45284?
CVE-2024-45284 is a privilege escalation vulnerability related to SLCM transactions.
- agent/title
- agent/references
- agent/type
- agent/description
- agent/first-publish-date
- agent/severity
- agent/weakness
- agent/author
- agent/event
- collector/nvd-api
- source/NVD
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/tags
- agent/softwarecombine
- agent/guess-ai
- agent/software-canonical-lookup