CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

SAP Memory Pipes (MPI) Desynchronization

SAP NetWeaver Application Server ABAP, SAP NetWeaver Application Server Java, ABAP Platform, SAP Content Server 7.53 and SAP Web Dispatcher are vulnerable to request smuggling and request concatenation attacks. An unauthenticated attacker can prepend a victim's request with arbitrary data. This...

10CVSS7.7AI score0.93833EPSS

Exploits8References5

GithubExploit•added 2022/02/15 9:22 a.m.•1046 views

Exploit for HTTP Request Smuggling in Sap Content_Server

It is an offensive tool for SAP memory pipesMPI desynchronizat...

10CVSS9.3AI score0.93833EPSS

Exploits8

NVD•added 2022/02/09 11:15 p.m.•26 views

CVE-2022-22536

SAP NetWeaver Application Server ABAP, SAP NetWeaver Application Server Java, ABAP Platform, SAP Content Server 7.53 and SAP Web Dispatcher are vulnerable for request smuggling and request concatenation. An unauthenticated attacker can prepend a victim's request with arbitrary data. This way, the...

10CVSS0.93833EPSS

Exploits8References3

Prion•added 2022/02/09 11:15 p.m.•28 views

Design/Logic Flaw

10CVSS9.8AI score0.93833EPSS

Exploits8References2Affected Software3

ATTACKERKB•added 2022/02/09 11:15 p.m.•47 views

CVE-2022-22536

10CVSS7.7AI score0.93833EPSS

In wildExploits8References4Affected Software3

CVE•added 2022/02/09 10:5 p.m.•903 views

CVE-2022-22536

CVE-2022-22536 affects SAP NetWeaver components (ABAP/Java stacks), ABAP Platform, SAP Content Server 7.53, and SAP Web Dispatcher. The issue is HTTP request smuggling/concatenation caused by how the SAP ICM front end parses requests, enabling an unauthenticated attacker to prepend arbitrary data...

10CVSS9.2AI score0.93833EPSS

In wildExploits8References3Affected Software3