CVE-2022-41212

🗓️ 08 Nov 2022 00:00:00Reported by sapType

cve🔗 web.nvd.nist.gov📰️ 5 Media mentions👁 84 Views

Due to insufficient input validation, SAP NetWeaver Application Server ABAP and ABAP Platform allows an attacker with high level privileges to use a remote enabled function to read a file

Reporter	Title	Published	Views	Family All 12
Circl	CVE-2022-41212	9 Nov 202200:41	–	circl
CNNVD	SAP NetWeaver和SAP NetWeaver Application Server 路径遍历漏洞	8 Nov 202200:00	–	cnnvd
Cvelist	CVE-2022-41212	8 Nov 202200:00	–	cvelist
EUVD	EUVD-2022-44453	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in SAP products	8 Nov 202200:00	–	ncsc
NVD	CVE-2022-41212	8 Nov 202222:15	–	nvd
OSV	CVE-2022-41212	8 Nov 202222:15	–	osv
Prion	Input validation	8 Nov 202222:15	–	prion
Positive Technologies	PT-2022-25733 · Sap · Abap Platform +1	8 Nov 202200:00	–	ptsecurity
RedhatCVE	CVE-2022-41212	23 May 202500:45	–	redhatcve

NVD

Vulners

Node

sap netweaver_application_server_abapMatch700

sap netweaver_application_server_abapMatch731

sap netweaver_application_server_abapMatch740

sap netweaver_application_server_abapMatch750

sap netweaver_application_server_abapMatch789

sap netweaver_application_server_abapMatch804

[
  {
    "vendor": "SAP SE",
    "product": "SAP NetWeaver Application Server ABAP and ABAP Platform",
    "versions": [
      {
        "version": "= 700",
        "status": "affected"
      },
      {
        "version": "= 731",
        "status": "affected"
      },
      {
        "version": "= 804",
        "status": "affected"
      },
      {
        "version": "= 740",
        "status": "affected"
      },
      {
        "version": "= 750",
        "status": "affected"
      },
      {
        "version": "= 789",
        "status": "affected"
      }
    ]
  }
]

Source	Link
launchpad	www.launchpad.support.sap.com/
sap	www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html