CVE-2022-28773

Summary

Due to an uncontrolled recursion in SAP Web Dispatcher and SAP Internet Communication Manager, the application may crash, leading to denial of service, but can be restarted automatically.

Affected Software

VendorProductVersion RangeStatus
SAP SESAP NetWeaver (Internet Communication Manager)KRNL64NUC 7.22affected
SAP SESAP NetWeaver (Internet Communication Manager)7.22EXTaffected
SAP SESAP NetWeaver (Internet Communication Manager)7.49affected
SAP SESAP NetWeaver (Internet Communication Manager)KRNL64UC 7.22affected
SAP SESAP NetWeaver (Internet Communication Manager)7.53affected
SAP SESAP NetWeaver (Internet Communication Manager)KERNEL 7.22affected
SAP SESAP NetWeaver (Internet Communication Manager)7.77affected
SAP SESAP NetWeaver (Internet Communication Manager)7.81affected
SAP SESAP NetWeaver (Internet Communication Manager)7.85affected
SAP SESAP NetWeaver (Internet Communication Manager)7.86affected
SAP SESAP Web Dispatcher7.53affected
SAP SESAP Web Dispatcher7.77affected
SAP SESAP Web Dispatcher7.81affected
SAP SESAP Web Dispatcher7.85affected
SAP SESAP Web Dispatcher7.86affected

Weaknesses

  • CWE-674: CWE-674 Uncontrolled Recursion

ADP Enrichment

CVE Program Container

Additional References

References