{"uuid": "eb989a26-f9fb-4c66-992e-dd6f39f485cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-25642", "type": "seen", "source": "https://t.me/arpsyndicate/4946", "content": "#ExploitObserverAlert\n\nCVE-2024-25642\n\nDESCRIPTION: Exploit Observer has 9 entries in 3 file formats related to CVE-2024-25642. Due to improper validation of certificate in SAP Cloud Connector - version 2.0, attacker can impersonate the genuine servers to interact with SCC breaking the mutual authentication. Hence, the attacker can intercept the request to view/modify sensitive information. There is no impact on the availability of the system.\n\nFIRST-EPSS: 0.000430000\nARPS-PRIORITY: 0.8582365", "creation_timestamp": "2024-05-19T08:48:18.000000Z"}