Lucene search
+L

CVE-2023-36922

🗓️ 11 Jul 2023 02:56:55Reported by sapType 
cve
 cve
🔗 web.nvd.nist.gov👁 151 Views

SAP NetWeaver ABAP (IS-OIL) allows authenticated attacker to inject OS command in unprotected paramete

Related
Detection
Affected
Refs
NVD
Vulners
Node
OR
sapnetweaverMatch600
sapnetweaverMatch602
sapnetweaverMatch603
sapnetweaverMatch604
sapnetweaverMatch605
sapnetweaverMatch606
sapnetweaverMatch617
sapnetweaverMatch618
sapnetweaverMatch800
sapnetweaverMatch802
sapnetweaverMatch803
sapnetweaverMatch804
sapnetweaverMatch805
sapnetweaverMatch806
sapnetweaverMatch807
[
  {
    "defaultStatus": "unaffected",
    "product": "SAP ECC and SAP S/4HANA (IS-OIL)",
    "vendor": "SAP_SE",
    "versions": [
      {
        "status": "affected",
        "version": "IS-OIL 600"
      },
      {
        "status": "affected",
        "version": "IS-OIL 602"
      },
      {
        "status": "affected",
        "version": "IS-OIL 603"
      },
      {
        "status": "affected",
        "version": "IS-OIL 604"
      },
      {
        "status": "affected",
        "version": "IS-OIL 605"
      },
      {
        "status": "affected",
        "version": "IS-OIL 606"
      },
      {
        "status": "affected",
        "version": "IS-OIL 617"
      },
      {
        "status": "affected",
        "version": "IS-OIL 618"
      },
      {
        "status": "affected",
        "version": "IS-OIL 800"
      },
      {
        "status": "affected",
        "version": "IS-OIL 802"
      },
      {
        "status": "affected",
        "version": "IS-OIL 803"
      },
      {
        "status": "affected",
        "version": "IS-OIL 804"
      },
      {
        "status": "affected",
        "version": "IS-OIL 805"
      },
      {
        "status": "affected",
        "version": "IS-OIL 806"
      },
      {
        "status": "affected",
        "version": "IS-OIL 807"
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 06:07Current
8.7High risk
Vulners AI Score8.7
CVSS 3.18.8 - 9.1
EPSS0.00845
151