Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2022-31597

Within SAP S/4HANA - versions S4CORE 101, 102, 103, 104, 105, 106, SAPSCORE 127, the application business partner extension for Spain/Slovakia does not perform necessary authorization checks for a low privileged authenticated user over the network, resulting in escalation of privileges leading to low impact on confidentiality and integrity of the data.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 40.8%
CVSS Severity
CVSS v3 Score 5.4
CVSS v2 Score 5.5
Products affected by CVE-2022-31597
  • Sap » S/4hana » Version: 101
    cpe:2.3:a:sap:s/4hana:101
  • Sap » S/4hana » Version: 102
    cpe:2.3:a:sap:s/4hana:102
  • Sap » S/4hana » Version: 103
    cpe:2.3:a:sap:s/4hana:103
  • Sap » S/4hana » Version: 104
    cpe:2.3:a:sap:s/4hana:104
  • Sap » S/4hana » Version: 105
    cpe:2.3:a:sap:s/4hana:105
  • Sap » S/4hana » Version: 106
    cpe:2.3:a:sap:s/4hana:106
  • Sap » Sapscore » Version: 127
    cpe:2.3:a:sap:sapscore:127


Products
Pricing
Contact Us

Shodan ® - All rights reserved