Privilege Escalation in SAP NetWeaver Application Server and ABAP Platform
CVE-2022-29611
8.8HIGH
Key Information:
- Vendor
SAP
- Vendor
- CVE Published:
- 11 May 2022
What is CVE-2022-29611?
The SAP NetWeaver Application Server for ABAP and ABAP Platform are affected by a security flaw where the systems fail to enforce adequate authorization checks for authenticated users. This oversight allows users to gain elevated privileges, potentially leading to unauthorized access to critical components and data within the system. Organizations using these platforms should take immediate steps to mitigate this vulnerability and ensure proper security controls are in place.
Affected Version(s)
SAP NetWeaver Application Server for ABAP and ABAP Platform 700
SAP NetWeaver Application Server for ABAP and ABAP Platform 701
SAP NetWeaver Application Server for ABAP and ABAP Platform 702