{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-17T06:36:52.498","vulnerabilities":[{"cve":{"id":"CVE-2024-37175","sourceIdentifier":"cna@sap.com","published":"2024-07-09T05:15:11.823","lastModified":"2024-11-21T09:23:21.793","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"SAP CRM WebClient does not\nperform necessary authorization check for an authenticated user, resulting in\nescalation of privileges. This could allow an attacker to access some sensitive\ninformation."},{"lang":"es","value":"SAP CRM WebClient no realiza la verificación de autorización necesaria para un usuario autenticado, lo que resulta en una escalada de privilegios. Esto podría permitir que un atacante acceda a información confidencial."}],"metrics":{"cvssMetricV31":[{"source":"cna@sap.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"cna@sap.com","type":"Secondary","description":[{"lang":"en","value":"CWE-862"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:sap:customer_relationship_management_s4fnd:102:*:*:*:*:*:*:*","matchCriteriaId":"F8E0DA63-3FA7-4CC4-A14E-852A632C41BC"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:customer_relationship_management_s4fnd:103:*:*:*:*:*:*:*","matchCriteriaId":"378861FE-CD5D-49A9-8245-538A91190064"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:customer_relationship_management_s4fnd:104:*:*:*:*:*:*:*","matchCriteriaId":"DA1262DB-E4C8-4298-B423-5EF859CE722F"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:customer_relationship_management_s4fnd:105:*:*:*:*:*:*:*","matchCriteriaId":"F9D85325-56C8-4043-BDA8-C94FE946B912"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:customer_relationship_management_s4fnd:106:*:*:*:*:*:*:*","matchCriteriaId":"42A51853-E87F-47A3-A257-86B28F8F4607"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:customer_relationship_management_s4fnd:107:*:*:*:*:*:*:*","matchCriteriaId":"2250BB48-10D6-480F-AE9F-10582674CC9A"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:customer_relationship_management_s4fnd:108:*:*:*:*:*:*:*","matchCriteriaId":"39AF19C9-275E-41E7-B80A-34E31620ABBA"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:customer_relationship_management_webclient_ui:701:*:*:*:*:*:*:*","matchCriteriaId":"2F220D25-9344-482A-A36C-9D743EA55DE8"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:customer_relationship_management_webclient_ui:731:*:*:*:*:*:*:*","matchCriteriaId":"48791122-7265-4C51-8AEB-DEBC199F9A7F"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:customer_relationship_management_webclient_ui:746:*:*:*:*:*:*:*","matchCriteriaId":"B9EEA160-B4B4-45E9-84C8-C26E52D6F329"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:customer_relationship_management_webclient_ui:747:*:*:*:*:*:*:*","matchCriteriaId":"8BDBE717-ADB6-4080-A198-E468080F82B2"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:customer_relationship_management_webclient_ui:748:*:*:*:*:*:*:*","matchCriteriaId":"1B8775BD-EAB8-4F08-B65D-35B704C0E36B"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:customer_relationship_management_webclient_ui:800:*:*:*:*:*:*:*","matchCriteriaId":"2BFCEADC-7359-470F-A412-5B2808CF6069"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:customer_relationship_management_webclient_ui:801:*:*:*:*:*:*:*","matchCriteriaId":"A387786F-F4F6-44FC-B969-6FB92A1AA096"}]}]}],"references":[{"url":"https://me.sap.com/notes/3467377","source":"cna@sap.com","tags":["Permissions Required"]},{"url":"https://url.sap/sapsecuritypatchday","source":"cna@sap.com","tags":["Vendor Advisory"]},{"url":"https://me.sap.com/notes/3467377","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Permissions Required"]},{"url":"https://url.sap/sapsecuritypatchday","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}