Security Advisory

CVE-2024-25642

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-02-13 02:44:20

Last updated 2025-05-08 15:49:42

Assigner sap

State PUBLISHED

Description

Due to improper validation of certificate in SAP Cloud Connector - version 2.0, attacker can impersonate the genuine servers to interact with SCC breaking the mutual authentication. Hence, the attacker can intercept the request to view/modify sensitive information. There is no impact on the availability of the system.

← Browse all CVEs View on cve.org ↗