CVE-2024-33001

Summary

SAP NetWeaver and ABAP platform allows an attacker to impede performance for legitimate users by crashing or flooding the service.

An impact of this Denial of Service vulnerability might be long response delays and service interruptions, thus degrading the service quality experienced by legitimate users causing high impact on availability of the application.

Affected Software

VendorProductVersion RangeStatus
SAP_SESAP NetWeaver and ABAP platformST-PI 2008_1_700affected
SAP_SESAP NetWeaver and ABAP platform2008_1_710affected
SAP_SESAP NetWeaver and ABAP platform740affected

Weaknesses

  • CWE-400: CWE-400: Uncontrolled Resource Consumption

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References