CVE-2024-33008

MEDIUM

SAP Replication Server - Memory Corruption

Title source: llm

Description

SAP Replication Server allows an attacker to use gateway for executing some commands to RSSD. This could result in crashing the Replication Server due to memory corruption with high impact on Availability of the system.

References (2)

Core 2

Core References

Vendor Advisory

https://me.sap.com/notes/3349468

Various Sources

https://support.sap.com/en/my-support/knowledge-base/security-notes-news.html

Scores

CVSS v3 4.9

EPSS 0.0010

EPSS Percentile 26.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-787

Status published

Products (3)

SAP_SE/SAP Replication Server 16.0

SAP_SE/SAP Replication Server 16.0.3

SAP_SE/SAP Replication Server 16.0.4

Published May 14, 2024

Tracked Since Feb 18, 2026