CVE-2022-27669

Published: Apr 12, 2022

Modified: Aug 3, 2024

PUBLISHED

Description

An unauthenticated user can use functions of XML Data Archiving Service of SAP NetWeaver Application Server for Java - version 7.50, to which access should be restricted. This may result in an escalation of privileges.

Vendor	Product	Versions
SAP SE	SAP NetWeaver Application Server for Java	affected `7.50`

Weaknesses (CWE)

CWE-862

References

https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html

x_refsource_MISC

https://launchpad.support.sap.com/#/notes/3152442

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-27669

Description

Affected Products

Weaknesses (CWE)

References