CVE-2022-22534

🗓️ 09 Feb 2022 22:05:21Reported by sapType

Insufficient encoding in SAP NetWeaver leads to sensitive data exposur

Reporter	Title	Published	Views	Family All 11
ATTACKERKB	CVE-2022-22534	9 Feb 202223:15	–	attackerkb
CNNVD	SAP Netweaver 跨站脚本漏洞	8 Feb 202200:00	–	cnnvd
CNVD	SAP NetWeaver Application Server Cross-Site Scripting Vulnerability (CNVD-2022-63625)	31 Mar 202200:00	–	cnvd
CVE	CVE-2022-22534	9 Feb 202222:05	–	cve
EUVD	EUVD-2022-27680	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in SAP products	8 Feb 202200:00	–	ncsc
NVD	CVE-2022-22534	9 Feb 202223:15	–	nvd
Prion	Design/Logic Flaw	9 Feb 202223:15	–	prion
Positive Technologies	PT-2022-15504 · Sap · Sap Netweaver	9 Feb 202200:00	–	ptsecurity
RedhatCVE	CVE-2022-22534	22 May 202522:26	–	redhatcve

[
  {
    "product": "SAP NetWeaver (ABAP and Java application Servers)",
    "vendor": "SAP SE",
    "versions": [
      {
        "status": "affected",
        "version": "700"
      },
      {
        "status": "affected",
        "version": "701"
      },
      {
        "status": "affected",
        "version": "702"
      },
      {
        "status": "affected",
        "version": "731"
      },
      {
        "status": "affected",
        "version": "740"
      },
      {
        "status": "affected",
        "version": "750"
      },
      {
        "status": "affected",
        "version": "751"
      },
      {
        "status": "affected",
        "version": "752"
      },
      {
        "status": "affected",
        "version": "753"
      },
      {
        "status": "affected",
        "version": "754"
      },
      {
        "status": "affected",
        "version": "755"
      },
      {
        "status": "affected",
        "version": "756"
      }
    ]
  }
]

Source	Link
sap	www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html
launchpad	www.launchpad.support.sap.com/

24 Aug 2022 15:18Current

6.8Medium risk

Vulners AI Score6.8

EPSS0.00822