CVE-2023-33987

Summary

An unauthenticated attacker in SAP Web Dispatcher - versions WEBDISP 7.49, WEBDISP 7.53, WEBDISP 7.54, WEBDISP 7.77, WEBDISP 7.81, WEBDISP 7.85, WEBDISP 7.88, WEBDISP 7.89, WEBDISP 7.90, KERNEL 7.49, KERNEL 7.53, KERNEL 7.54 KERNEL 7.77, KERNEL 7.81, KERNEL 7.85, KERNEL 7.88, KERNEL 7.89, KERNEL 7.90, KRNL64NUC 7.49, KRNL64UC 7.49, KRNL64UC 7.53, HDB 2.00, XS_ADVANCED_RUNTIME 1.00, SAP_EXTENDED_APP_SERVICES 1, can submit a malicious crafted request over a network to a front-end server which may, over several attempts, result in a back-end server confusing the boundaries of malicious and legitimate messages. This can result in the back-end server executing a malicious payload which can be used to read or modify information on the server or make it temporarily unavailable.

Affected Software

VendorProductVersion RangeStatus
SAP_SESAP Web DispatcherWEBDISP 7.49affected
SAP_SESAP Web DispatcherWEBDISP 7.53affected
SAP_SESAP Web DispatcherWEBDISP 7.54affected
SAP_SESAP Web DispatcherWEBDISP 7.77affected
SAP_SESAP Web DispatcherWEBDISP 7.81affected
SAP_SESAP Web DispatcherWEBDISP 7.85affected
SAP_SESAP Web DispatcherWEBDISP 7.88affected
SAP_SESAP Web DispatcherWEBDISP 7.89affected
SAP_SESAP Web DispatcherWEBDISP 7.90affected
SAP_SESAP Web DispatcherKERNEL 7.49affected
SAP_SESAP Web DispatcherKERNEL 7.53affected
SAP_SESAP Web DispatcherKERNEL 7.54 KERNEL 7.77affected
SAP_SESAP Web DispatcherKERNEL 7.81affected
SAP_SESAP Web DispatcherKERNEL 7.85affected
SAP_SESAP Web DispatcherKERNEL 7.88affected
SAP_SESAP Web DispatcherKERNEL 7.89affected
SAP_SESAP Web DispatcherKERNEL 7.90affected
SAP_SESAP Web DispatcherKRNL64NUC 7.49affected
SAP_SESAP Web DispatcherKRNL64UC 7.49affected
SAP_SESAP Web DispatcherKRNL64UC 7.53affected
SAP_SESAP Web DispatcherHDB 2.00affected
SAP_SESAP Web DispatcherXS_ADVANCED_RUNTIME 1.00affected
SAP_SESAP Web DispatcherSAP_EXTENDED_APP_SERVICES 1affected

Weaknesses

  • CWE-444: CWE-444: Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References