CVE-2026-24311

Summary

The SAP Customer Checkout application exhibits certain design characteristics that involve locally storing operational data using reversible protection mechanisms. Access to this data, combined with user?initiated interaction, may allow modifications to occur without validation. Such changes could affect system behaviour during startup, resulting in a high impact on the application's confidentiality and integrity, with a low impact on availability.

Affected Software

VendorProductVersion RangeStatus
SAP_SESAP Customer Checkout 2.0SAP_CUSTOMER_CHECKOUT 2.0affected

Weaknesses

  • CWE-312: CWE-312: Cleartext Storage of Sensitive Information

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References