Lucene search
China National Vulnerability DatabaseCNVD-2023-65174HistoryAug 11, 2023 - 12:00 a.m.
SAP PowerDesigner Access Control Error Vulnerability
2023-08-1100:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
sap powerdesigner
access control error
vulnerability
incorrect access control
unauthenticated attacker
arbitrary queries
backend database
proxy
exploitation
0.001 Low
EPSS
Percentile
42.2%
SAP PowerDesigner is a database design software from SAP (Germany). SAP PowerDesigner suffers from an Access Control Error vulnerability that arises from having incorrect access control and can be exploited by an unauthenticated attacker to run arbitrary queries against the backend database via a proxy.
| CPE | Name | Operator | Version |
|---|---|---|---|
| sap powerdesigner | eq | 16.7 |
Related
cvelist
cvelist
CVE-2023-37483 Improper Access Control Vulnerabilities in SAP PowerDesigner
2023-08-08 00:39:33
cve
cve
CVE-2023-37483
2023-08-08 01:15:17
prion
prion
Improper access control
2023-08-08 01:15:00
nvd
nvd
CVE-2023-37483
2023-08-08 01:15:17