Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2022-22534

Due to insufficient encoding of user input, SAP NetWeaver allows an unauthenticated attacker to inject code that may expose sensitive data like user ID and password. These endpoints are normally exposed over the network and successful exploitation can partially impact confidentiality of the application.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.017
EPSS Ranking 81.5%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
Products affected by CVE-2022-22534
  • Sap » Netweaver » Version: 700
    cpe:2.3:a:sap:netweaver:700
  • Sap » Netweaver » Version: 701
    cpe:2.3:a:sap:netweaver:701
  • Sap » Netweaver » Version: 702
    cpe:2.3:a:sap:netweaver:702
  • Sap » Netweaver » Version: 731
    cpe:2.3:a:sap:netweaver:731
  • Sap » Netweaver » Version: 740
    cpe:2.3:a:sap:netweaver:740
  • Sap » Netweaver » Version: 750
    cpe:2.3:a:sap:netweaver:750
  • Sap » Netweaver » Version: 751
    cpe:2.3:a:sap:netweaver:751
  • Sap » Netweaver » Version: 752
    cpe:2.3:a:sap:netweaver:752
  • Sap » Netweaver » Version: 753
    cpe:2.3:a:sap:netweaver:753
  • Sap » Netweaver » Version: 754
    cpe:2.3:a:sap:netweaver:754
  • Sap » Netweaver » Version: 755
    cpe:2.3:a:sap:netweaver:755
  • Sap » Netweaver » Version: 756
    cpe:2.3:a:sap:netweaver:756


Products
Pricing
Contact Us

Shodan ® - All rights reserved