EUVD-2022-32669

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

SAP NetWeaver ABAP Server allows attackers to redirect users to malicious sites due to poor URL validation.

Reporter	Title	Published	Views	Family All 14
ATTACKERKB	CVE-2022-28215	12 Apr 202217:15	–	attackerkb
Circl	CVE-2022-28215	12 Apr 202220:23	–	circl
CNNVD	SAP NetWeaver ABAP Server 输入验证错误漏洞	12 Apr 202200:00	–	cnnvd
CNVD	SAP NetWeaver ABAP Server and ABAP Platform用户重定向漏洞	15 Apr 202200:00	–	cnvd
CVE	CVE-2022-28215	12 Apr 202216:11	–	cve
Cvelist	CVE-2022-28215	12 Apr 202216:11	–	cvelist
NCSC	Vulnerabilities fixed in SAP products	14 Apr 202200:00	–	ncsc
NCSC	Vulnerabilities fixed in SAP products	14 Sep 202200:00	–	ncsc
NVD	CVE-2022-28215	12 Apr 202217:15	–	nvd
OSV	CVE-2022-28215	12 Apr 202217:15	–	osv

[
  {
    "enisaIdVendor": [
      {
        "id": "c7e201a1-4e92-3ce0-9c9f-825f61651a7b",
        "vendor": {
          "name": "SAP SE"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "19af97d7-13c3-305a-a6b0-a63b5816b274",
        "product": {
          "name": "SAP NetWeaver ABAP Server and ABAP Platform"
        },
        "product_version": "750"
      },
      {
        "id": "1fdc5491-16d3-3b18-ab56-2c24ad2c1221",
        "product": {
          "name": "SAP NetWeaver ABAP Server and ABAP Platform"
        },
        "product_version": "787"
      },
      {
        "id": "3b3e44ec-1b5b-3ee7-b973-83c02f521b91",
        "product": {
          "name": "SAP NetWeaver ABAP Server and ABAP Platform"
        },
        "product_version": "740"
      }
    ]
  }
]

Source	Link
sap	www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html
launchpad	www.launchpad.support.sap.com/

03 Oct 2025 20:07Current

5.3Medium risk

Vulners AI Score5.3

CVSS 3.14.7

CVSS 24.3

EPSS0.00424