Lucene search
K

The vulnerability of SAP NetWeaver AS ABAP and SAP NetWeaver ABAP integration platforms lies in incorrect restrictions on path names to restricted catalogs, allowing attackers to overwrite arbitrary files.

🗓️ 17 Mar 2023 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType 
bdu_fstec
 bdu_fstec
🔗 bdu.fstec.ru👁 3 Views

The SAP NetWeaver ABAP vulnerability allows overwriting files remotely due to lax restricted catalog path name checks.

Related
Detection
Refs
ReporterTitlePublishedViews
Family
Circl
CVE-2023-27269
15 Mar 202307:54
circl
CNNVD
SAP NetWeaver AS 路径遍历漏洞
14 Mar 202300:00
cnnvd
CNVD
SAP NetWeaver AS Path Traversal Vulnerability
16 Mar 202300:00
cnvd
CVE
CVE-2023-27269
14 Mar 202304:58
cve
Cvelist
CVE-2023-27269 Directory Traversal vulnerability in SAP NetWeaver AS for ABAP and ABAP Platform
14 Mar 202304:58
cvelist
EUVD
EUVD-2023-31047
3 Oct 202520:07
euvd
NCSC
Vulnerabilities fixed in SAP products
14 Mar 202300:00
ncsc
NCSC
Vulnerabilities fixed in SAP products
11 Apr 202300:00
ncsc
NVD
CVE-2023-27269
14 Mar 202305:15
nvd
OSV
CVE-2023-27269
14 Mar 202305:15
osv
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Mar 2023 00:00Current
6.7Medium risk
Vulners AI Score6.7
CVSS 29.4
CVSS 39.6
EPSS0.00982
3