SAP Open Source Program Office

1 exploit Active since Dec 2023
CVE-2023-50423 WRITEUP CRITICAL WRITEUP
SAP XSSEC < 4.1.0 - Unauthenticated Privilege Escalation
SAP BTP Security Services Integration Library ([Python] sap-xssec) - versions < 4.1.0, allow under certain conditions an escalation of privileges. On successful exploitation, an unauthenticated attacker can obtain arbitrary permissions within the application.
CVSS 9.1