Netweaver@7.22ext Security Vulnerabilities and Issues — Netweaver@7.22ext CVE List

Lucene search

SapNetweaver7.22ext

3 matches found

CVE•added 2022/04/12 5:15 p.m.•75 views

CVE-2022-28772

By overlong input values an attacker may force overwrite of the internal program stack in SAP Web Dispatcher - versions 7.53, 7.77, 7.81, 7.85, 7.86, or Internet Communication Manager - versions KRNL64NUC 7.22, 7.22EXT, 7.49, KRNL64UC 7.22, 7.22EXT, 7.49, 7.53, KERNEL 7.22, 7.49, 7.53, 7.77, 7.81, ...

7.5CVSS7.4AI score0.01139EPSS

CVE•added 2022/04/12 5:15 p.m.•70 views

CVE-2022-28773

Due to an uncontrolled recursion in SAP Web Dispatcher and SAP Internet Communication Manager, the application may crash, leading to denial of service, but can be restarted automatically.

7.5CVSS7.4AI score0.01139EPSS

CVE•added 2023/04/11 3:15 a.m.•38 views

CVE-2023-27499

SAP GUI for HTML - versions KERNEL 7.22, 7.53, 7.54, 7.77, 7.81, 7.85, 7.89, 7.91, KRNL64UC, 7.22, 7.22EXT, KRNL64UC 7.22, 7.22EXT does not sufficiently encode user-controlled inputs, resulting in a reflected Cross-Site Scripting (XSS) vulnerability. An attacker could craft a malicious URL and lure...

6.1CVSS6AI score0.00416EPSS