CVE-2024-33006

EUVD-2024-30751
An unauthenticated attacker can upload a malicious file to the server which when accessed by a victim can allow an attacker to completely compromise system. 
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
CISA-ADPADP
9.6 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 68%
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
sapnetweaver
754
ADP
sapnetweaver
755
ADP
sapnetweaver
756
ADP
sapnetweaver
757
ADP
sapnetweaver
758
ADP
Common Weakness Enumeration
References
https://me.sap.com/notes/3448171
https://support.sap.com/en/my-support/knowledge-base/security-notes-news.html
https://me.sap.com/notes/3448171
https://support.sap.com/en/my-support/knowledge-base/security-notes-news.html