CVE-2022-27656

🗓️ 11 May 2022 14:53:55Reported by sapType

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 84 Views

The SAP Web Dispatcher & ICM's Web admin UI has XSS vulnerabilit

Reporter	Title	Published	Views	Family All 10
ATTACKERKB	CVE-2022-27656	11 May 202215:15	–	attackerkb
Circl	CVE-2022-27656	11 May 202218:35	–	circl
CNNVD	SAP Web Dispatcher 跨站脚本漏洞	10 May 202200:00	–	cnnvd
Cvelist	CVE-2022-27656	11 May 202214:53	–	cvelist
EUVD	EUVD-2022-32154	3 Oct 202520:07	–	euvd
NVD	CVE-2022-27656	11 May 202215:15	–	nvd
OSV	CVE-2022-27656	11 May 202215:15	–	osv
Prion	Cross site scripting	11 May 202215:15	–	prion
RedhatCVE	CVE-2022-27656	22 May 202522:38	–	redhatcve
Tenable Nessus	SAP NetWeaver AS Java XSS (3145046)	13 May 202200:00	–	nessus

NVD

Vulners

Node

sap netweaver_as_abap_kernelMatch7.22

sap netweaver_as_abap_kernelMatch7.49

sap netweaver_as_abap_kernelMatch7.53

sap netweaver_as_abap_kernelMatch7.77

sap netweaver_as_abap_kernelMatch7.81

sap netweaver_as_abap_kernelMatch7.85

sap netweaver_as_abap_kernelMatch7.86

sap netweaver_as_abap_kernelMatch7.87

sap netweaver_as_abap_kernelMatch8.04

sap netweaver_as_abap_krnl64ucMatch7.22

sap netweaver_as_abap_krnl64ucMatch7.22ext

sap netweaver_as_abap_krnl64ucMatch7.49

sap netweaver_as_abap_krnl64ucMatch7.53

sap netweaver_as_abap_krnl64ucMatch8.04

sap webdispatcherMatch7.22ext

sap webdispatcherMatch7.49

sap webdispatcherMatch7.53

sap webdispatcherMatch7.77

sap webdispatcherMatch7.81

sap webdispatcherMatch7.83

sap webdispatcherMatch7.85

[
  {
    "product": "SAP NetWeaver AS for ABAP and Java (ICM Administration UI)",
    "vendor": "SAP SE",
    "versions": [
      {
        "status": "affected",
        "version": "KRNL64NUC 7.22"
      },
      {
        "status": "affected",
        "version": "7.22EXT"
      },
      {
        "status": "affected",
        "version": "7.49"
      },
      {
        "status": "affected",
        "version": "KRNL64 8.04"
      },
      {
        "status": "affected",
        "version": "7.22"
      },
      {
        "status": "affected",
        "version": "7.53"
      },
      {
        "status": "affected",
        "version": "KERNEL 7.22"
      },
      {
        "status": "affected",
        "version": "8.04"
      },
      {
        "status": "affected",
        "version": "7.77"
      },
      {
        "status": "affected",
        "version": "7.81"
      },
      {
        "status": "affected",
        "version": "7.85"
      },
      {
        "status": "affected",
        "version": "7.86"
      },
      {
        "status": "affected",
        "version": "7.87"
      }
    ]
  },
  {
    "product": "SAP Web Dispatcher (Web Administration UI)",
    "vendor": "SAP SE",
    "versions": [
      {
        "status": "affected",
        "version": "7.49"
      },
      {
        "status": "affected",
        "version": "7.53"
      },
      {
        "status": "affected",
        "version": "7.77"
      },
      {
        "status": "affected",
        "version": "7.81"
      },
      {
        "status": "affected",
        "version": "7.85"
      },
      {
        "status": "affected",
        "version": "7.22_EXT"
      }
    ]
  }
]

Source	Link
launchpad	www.launchpad.support.sap.com/
sap	www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html

21 Nov 2024 06:56Current

5.9Medium risk

Vulners AI Score5.9

CVSS 24.3

CVSS 3.16.1

EPSS0.00323

CWE-79