CVE-2022-29611

Summary

SAP NetWeaver Application Server for ABAP and ABAP Platform do not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges.

Affected Software

VendorProductVersion RangeStatus
SAP SESAP NetWeaver Application Server for ABAP and ABAP Platform700affected
SAP SESAP NetWeaver Application Server for ABAP and ABAP Platform701affected
SAP SESAP NetWeaver Application Server for ABAP and ABAP Platform702affected
SAP SESAP NetWeaver Application Server for ABAP and ABAP Platform710affected
SAP SESAP NetWeaver Application Server for ABAP and ABAP Platform711affected
SAP SESAP NetWeaver Application Server for ABAP and ABAP Platform730affected
SAP SESAP NetWeaver Application Server for ABAP and ABAP Platform731affected
SAP SESAP NetWeaver Application Server for ABAP and ABAP Platform740affected
SAP SESAP NetWeaver Application Server for ABAP and ABAP Platform750affected
SAP SESAP NetWeaver Application Server for ABAP and ABAP Platform751affected
SAP SESAP NetWeaver Application Server for ABAP and ABAP Platform752affected
SAP SESAP NetWeaver Application Server for ABAP and ABAP Platform753affected
SAP SESAP NetWeaver Application Server for ABAP and ABAP Platform754affected
SAP SESAP NetWeaver Application Server for ABAP and ABAP Platform755affected
SAP SESAP NetWeaver Application Server for ABAP and ABAP Platform756affected
SAP SESAP NetWeaver Application Server for ABAP and ABAP Platform787affected
SAP SESAP NetWeaver Application Server for ABAP and ABAP Platform788affected

Weaknesses

  • CWE-862: CWE-862

ADP Enrichment

CVE Program Container

Additional References

References