Input validation

2020-01-1418:15:00

PRIOn knowledge base

www.prio-n.com

0.001 Low

EPSS

Percentile

45.8%

JSON

Improper input validation in SAP NetWeaver Internet Communication Manager (update provided in KRNL32NUC & KRNL32UC 7.21, 7.21EXT, 7.22, 7.22EXT KRNL64NUC & KRNL64UC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49 KERNEL 7.21, 7.49, 7.53) allows an attacker to prevent users from accessing its services through a denial of service.

CPENameOperatorVersion
netweaver_internet_communication_manager_\\(kernel\\)eq7.21
netweaver_internet_communication_manager_\\(kernel\\)eq7.22
netweaver_internet_communication_manager_\\(kernel\\)eq7.49
netweaver_internet_communication_manager_\\(kernel\\)eq7.53
netweaver_internet_communication_manager_\\(krnl32nuc\\)eq7.21
netweaver_internet_communication_manager_\\(krnl32nuc\\)eq7.22
netweaver_internet_communication_manager_\\(krnl32nuc\\)eq7.22.0-ext
netweaver_internet_communication_manager_\\(krnl32nuc\\)eq7.21.0-ext
netweaver_internet_communication_manager_\\(krnl32uc\\)eq7.21
netweaver_internet_communication_manager_\\(krnl32uc\\)eq7.21.0-ext

Name	Operator	Version
netweaver_internet_communication_manager_\\(kernel\\)	eq	7.21
netweaver_internet_communication_manager_\\(kernel\\)	eq	7.22
netweaver_internet_communication_manager_\\(kernel\\)	eq	7.49
netweaver_internet_communication_manager_\\(kernel\\)	eq	7.53
netweaver_internet_communication_manager_\\(krnl32nuc\\)	eq	7.21
netweaver_internet_communication_manager_\\(krnl32nuc\\)	eq	7.22
netweaver_internet_communication_manager_\\(krnl32nuc\\)	eq	7.22.0-ext
netweaver_internet_communication_manager_\\(krnl32nuc\\)	eq	7.21.0-ext
netweaver_internet_communication_manager_\\(krnl32uc\\)	eq	7.21
netweaver_internet_communication_manager_\\(krnl32uc\\)	eq	7.21.0-ext