CVE-2023-32115

🗓️ 13 Jun 2023 02:42:28Reported by sapType

An attacker can exploit MDS COMPARE TOOL and use specially crafted inputs to read and modify database commands

Reporter	Title	Published	Views	Family All 10
CNNVD	SAP MDS COMPARE TOOL SQL注入漏洞	13 Jun 202300:00	–	cnnvd
Cvelist	CVE-2023-32115 SQL Injection in Master Data Synchronization (MDS COMPARE TOOL)	13 Jun 202302:42	–	cvelist
EUVD	EUVD-2023-36383	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in SAP	13 Jun 202300:00	–	ncsc
NVD	CVE-2023-32115	13 Jun 202303:15	–	nvd
OSV	CVE-2023-32115	13 Jun 202303:15	–	osv
Prion	Design/Logic Flaw	13 Jun 202303:15	–	prion
Positive Technologies	PT-2023-23623 · Unknown · Mds Compare Tool	13 Jun 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-32115	23 May 202505:11	–	redhatcve
Vulnrichment	CVE-2023-32115 SQL Injection in Master Data Synchronization (MDS COMPARE TOOL)	13 Jun 202302:42	–	vulnrichment

NVD

Vulners

Node

sap master_data_synchronizationMatch600

sap master_data_synchronizationMatch602

sap master_data_synchronizationMatch603

sap master_data_synchronizationMatch604

sap master_data_synchronizationMatch605

sap master_data_synchronizationMatch606

sap master_data_synchronizationMatch616

[
  {
    "defaultStatus": "unaffected",
    "product": "Master Data Synchronization (MDS COMPARE TOOL)",
    "vendor": "SAP_SE",
    "versions": [
      {
        "status": "affected",
        "version": "SAP_APPL 600"
      },
      {
        "status": "affected",
        "version": "SAP_APPL 602"
      },
      {
        "status": "affected",
        "version": "SAP_APPL 603"
      },
      {
        "status": "affected",
        "version": "SAP_APPL 604"
      },
      {
        "status": "affected",
        "version": "SAP_APPL 605"
      },
      {
        "status": "affected",
        "version": "SAP_APPL 606"
      },
      {
        "status": "affected",
        "version": "SAP_APPL 616"
      }
    ]
  }
]

Source	Link
launchpad	www.launchpad.support.sap.com/
sap	www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html

21 Nov 2024 08:02Current

5Medium risk

Vulners AI Score5

CVSS 3.14.2 - 6.1

EPSS0.00204

SSVC

CWE-89