CVE-2024-22131 Code Injection vulnerability in SAP ABA (Application Basis)

🗓️ 13 Feb 2024 02:30:51Reported by sapType

Code Injection vulnerability in SAP ABA, allows attacker to invoke unauthorized action

Reporter	Title	Published	Views	Family All 12
BDU FSTEC	The vulnerability of the platform for ensuring the functionality of SAP ABA applications, related to improper code generation management, allows an attacker to gain read and modify access to data or cause service failures.	22 Jul 202400:00	–	bdu_fstec
Circl	CVE-2024-22131	13 Feb 202404:31	–	circl
CNNVD	SAP ABA 代码注入漏洞	13 Feb 202400:00	–	cnnvd
CNVD	SAP ABA Code Injection Vulnerability	19 Feb 202400:00	–	cnvd
CVE	CVE-2024-22131	13 Feb 202402:30	–	cve
EUVD	EUVD-2024-19727	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in SAP products	15 Feb 202400:00	–	ncsc
NVD	CVE-2024-22131	13 Feb 202403:15	–	nvd
Prion	Authorization	13 Feb 202403:15	–	prion
Positive Technologies	PT-2024-5016 · Sap · Sap Aba	12 Feb 202400:00	–	ptsecurity

[
  {
    "defaultStatus": "unaffected",
    "product": "SAP ABA (Application Basis)",
    "vendor": "SAP_SE",
    "versions": [
      {
        "status": "affected",
        "version": "700"
      },
      {
        "status": "affected",
        "version": "701"
      },
      {
        "status": "affected",
        "version": "702"
      },
      {
        "status": "affected",
        "version": "731"
      },
      {
        "status": "affected",
        "version": "740"
      },
      {
        "status": "affected",
        "version": "750"
      },
      {
        "status": "affected",
        "version": "751"
      },
      {
        "status": "affected",
        "version": "752"
      },
      {
        "status": "affected",
        "version": "75C"
      },
      {
        "status": "affected",
        "version": "75I"
      }
    ]
  }
]

Source	Link
sap	www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html
me	www.me.sap.com/notes/3420923

13 Feb 2024 02:30Current

9.2High risk

Vulners AI Score9.2

CVSS 3.19.1

EPSS0.01079

CWE-94