CVE-2024-33001— SAP NetWeaver 资源管理错误漏洞

Denial of service (DOS) in SAP NetWeaver and ABAP platform

SAP NetWeaver and ABAP platform allows an attacker to impede performance for legitimate users by crashing or flooding the service. An impact of this Denial of Service vulnerability might be long response delays and service interruptions, thus degrading the service quality experienced by legitimate users causing high impact on availability of the application.

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

未加控制的资源消耗(资源穷尽)

SAP NetWeaver 资源管理错误漏洞

SAP NetWeaver和SAP NetWeaver ABAP Server都是德国思爱普（SAP）公司的产品。SAP NetWeaver是一套面向服务的集成化应用平台。该平台主要为SAP应用程序提供开发和运行环境。SAP NetWeaver ABAP Server是一个用作 SAP 产品的 Web 应用程序服务器。 SAP NetWeaver and ABAP platform存在资源管理错误漏洞，该漏洞源于攻击者通过崩溃或洪泛来阻碍合法用户的性能。这种拒绝服务漏洞的影响可能是长时间的响应延迟和服务中

N/A

N/A