Lucene search
China National Vulnerability DatabaseCNVD-2022-88974HistoryOct 13, 2022 - 12:00 a.m.
SAP Manufacturing Execution Path Traversal Vulnerability
2022-10-1300:00:00
China National Vulnerability Database
www.cnvd.org.cn
25
sap manufacturing execution
path traversal
mes solution
vulnerability
remote server access
0.003 Low
EPSS
Percentile
68.3%
SAP Manufacturing Execution is an integrated Manufacturing Execution System (MES) solution for discrete manufacturing processes from SAP, Germany. SAP Manufacturing Execution versions 15.1, 15.2, and 15.3 contain a path traversal vulnerability that stems from insufficient validation of the file path request parameter, which could be exploited by an attacker to read the contents of arbitrary directory files on a remote server.
| CPE | Name | Operator | Version |
|---|---|---|---|
| sap manufacturing execution | eq | 15.1 | |
| sap manufacturing execution | eq | 15.2 | |
| sap manufacturing execution | eq | 15.3 |
Related
prion
prion
Input validation
2022-10-11 21:15:00
cve
cve
CVE-2022-39802
2022-10-11 21:15:14
cvelist
cvelist
CVE-2022-39802
2022-10-11 00:00:00
nvd
nvd
CVE-2022-39802
2022-10-11 21:15:14