Memory Corruption Vulnerability in SAP SQL Anywhere and SAP IQ
CVE-2022-35299
9.8CRITICAL
What is CVE-2022-35299?
SAP SQL Anywhere version 17.0 and SAP IQ version 16.1 are susceptible to a memory corruption vulnerability that arises from logical errors in memory management. This flaw may be exploited to trigger conditions such as stack-based buffer overflow, leading to potential disruption of service and unauthorized access to confidential data. It is critical for organizations using these products to evaluate their systems and apply necessary security updates to mitigate potential threats.
Affected Version(s)
SAP IQ 16.1
SAP SQL Anywhere 17.0