CVE-2022-31592

Summary

The application SAP Enterprise Extension Defense Forces & Public Security - versions 605, 606, 616,617,618, 802, 803, 804, 805, 806, does not perform necessary authorization checks for an authenticated user over the network, resulting in escalation of privileges leading to a limited impact on confidentiality.

Affected Software

VendorProductVersion RangeStatus
SAP SESAP Enterprise Extension Defense Forces & Public Security (EA-DFPS)605affected
SAP SESAP Enterprise Extension Defense Forces & Public Security (EA-DFPS)606affected
SAP SESAP Enterprise Extension Defense Forces & Public Security (EA-DFPS)616affected
SAP SESAP Enterprise Extension Defense Forces & Public Security (EA-DFPS)617affected
SAP SESAP Enterprise Extension Defense Forces & Public Security (EA-DFPS)618affected
SAP SESAP Enterprise Extension Defense Forces & Public Security (EA-DFPS)802affected
SAP SESAP Enterprise Extension Defense Forces & Public Security (EA-DFPS)803affected
SAP SESAP Enterprise Extension Defense Forces & Public Security (EA-DFPS)804affected
SAP SESAP Enterprise Extension Defense Forces & Public Security (EA-DFPS)805affected
SAP SESAP Enterprise Extension Defense Forces & Public Security (EA-DFPS)806affected

Weaknesses

  • CWE-862: CWE-862

ADP Enrichment

CVE Program Container

Additional References

References