QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2022-22532

Back to search

CVE-2022-22532

Published: Feb 9, 2022

Modified: Aug 3, 2024

PUBLISHED

Description

In SAP NetWeaver Application Server Java - versions KRNL64NUC 7.22, 7.22EXT, 7.49, KRNL64UC, 7.22, 7.22EXT, 7.49, 7.53, KERNEL 7.22, 7.49, 7.53, an unauthenticated attacker could submit a crafted HTTP server request which triggers improper shared memory buffer handling. This could allow the malicious payload to be executed and hence execute functions that could be impersonating the victim or even steal the victim's logon session.

VendorProductVersions

SAP SE

SAP NetWeaver Application Server Java

affected
KRNL64NUC 7.22
affected
7.22EXT
affected
7.49
affected
KRNL64UC
affected
7.22

+2 more versions

Weaknesses (CWE)

CWE-444

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now