Vulnerability Details CVE-2022-31592
The application SAP Enterprise Extension Defense Forces & Public Security - versions 605, 606, 616,617,618, 802, 803, 804, 805, 806, does not perform necessary authorization checks for an authenticated user over the network, resulting in escalation of privileges leading to a limited impact on confidentiality.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 36.1%
CVSS Severity
CVSS v3 Score 4.3
CVSS v2 Score 4.0
References
Products affected by CVE-2022-31592
-
cpe:2.3:a:sap:enterprise_extension_defense_forces_&_public_security:605
-
cpe:2.3:a:sap:enterprise_extension_defense_forces_&_public_security:606
-
cpe:2.3:a:sap:enterprise_extension_defense_forces_&_public_security:616
-
cpe:2.3:a:sap:enterprise_extension_defense_forces_&_public_security:617
-
cpe:2.3:a:sap:enterprise_extension_defense_forces_&_public_security:618
-
cpe:2.3:a:sap:enterprise_extension_defense_forces_&_public_security:802
-
cpe:2.3:a:sap:enterprise_extension_defense_forces_&_public_security:803
-
cpe:2.3:a:sap:enterprise_extension_defense_forces_&_public_security:804
-
cpe:2.3:a:sap:enterprise_extension_defense_forces_&_public_security:805
-
cpe:2.3:a:sap:enterprise_extension_defense_forces_&_public_security:806