logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2022-22532

Description

In SAP NetWeaver Application Server Java - versions KRNL64NUC 7.22, 7.22EXT, 7.49, KRNL64UC, 7.22, 7.22EXT, 7.49, 7.53, KERNEL 7.22, 7.49, 7.53, an unauthenticated attacker could submit a crafted HTTP server request which triggers improper shared memory buffer handling. This could allow the malicious payload to be executed and hence execute functions that could be impersonating the victim or even steal the victim's logon session.


Affected Software


CPE Name Name Version
sap:netweaver_application_server_java sap netweaver application server java 7.22
sap:netweaver_application_server_java sap netweaver application server java 7.49
sap:netweaver_application_server_java sap netweaver application server java 7.53
sap:netweaver_application_server_java sap netweaver application server java krnl64uc_7.22
sap:netweaver_application_server_java sap netweaver application server java krnl64uc_7.22ext
sap:netweaver_application_server_java sap netweaver application server java krnl64uc_7.49
sap:netweaver_application_server_java sap netweaver application server java krnl64nuc_7.22
sap:netweaver_application_server_java sap netweaver application server java krnl64nuc_7.22ext
sap:netweaver_application_server_java sap netweaver application server java krnl64nuc_7.49

Related