EUVD-2024-19723

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

SAP NetWeaver 7.50 allows high privilege attack leading to command injection vulnerability risks.

Reporter	Title	Published	Views	Family All 13
Circl	CVE-2024-22127	12 Mar 202402:26	–	circl
CNNVD	SAP NetWeaver 代码注入漏洞	12 Mar 202400:00	–	cnnvd
CNVD	SAP NetWeaver File Upload Vulnerability (CNVD-2024-13535)	14 Mar 202400:00	–	cnvd
CVE	CVE-2024-22127	12 Mar 202400:29	–	cve
Cvelist	CVE-2024-22127 Code Injection vulnerability in SAP NetWeaver AS Java (Administrator Log Viewer plug-in)	12 Mar 202400:29	–	cvelist
NCSC	Vulnerabilities fixed in SAP products	14 Mar 202400:00	–	ncsc
NVD	CVE-2024-22127	12 Mar 202401:15	–	nvd
OSV	CVE-2024-22127	12 Mar 202401:15	–	osv
Prion	Command injection	12 Mar 202401:15	–	prion
Positive Technologies	PT-2024-19217 · Sap · Sap Netweaver Administrator As Java	11 Mar 202400:00	–	ptsecurity

[
  {
    "enisaIdVendor": [
      {
        "id": "7d317634-125b-364a-b15e-8d2803a7826b",
        "vendor": {
          "name": "SAP_SE"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "add2521d-9224-37a7-b498-fe7d7c24b2b1",
        "product": {
          "name": "SAP NetWeaver AS Java (Administrator Log Viewer plug-in)"
        }
      },
      {
        "id": "b41adca4-0490-3905-b2ea-53a877598c8f",
        "product": {
          "name": "SAP NetWeaver AS Java (Administrator Log Viewer plug-in)"
        },
        "product_version": "7.50"
      }
    ]
  }
]

Source	Link
me	www.me.sap.com/notes/3433192
support	www.support.sap.com/en/my-support/knowledge-base/security-notes-news.html

03 Oct 2025 20:07Current

9High risk

Vulners AI Score9

CVSS 3.19.1

EPSS0.02495

SSVC