CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-41212

Due to insufficient input validation, SAP NetWeaver Application Server ABAP and ABAP Platform allows an attacker with high level privileges to use a remote enabled function to read a file which is otherwise restricted. On successful exploitation an attacker can completely compromise the confidentiality of the application.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 29.0%

CVSS Severity

CVSS v3 Score 4.9

References

Products affected by CVE-2022-41212

Sap » Netweaver Application Server Abap » Version: 700

cpe:2.3:a:sap:netweaver_application_server_abap:700
Sap » Netweaver Application Server Abap » Version: 731

cpe:2.3:a:sap:netweaver_application_server_abap:731
Sap » Netweaver Application Server Abap » Version: 740

cpe:2.3:a:sap:netweaver_application_server_abap:740
Sap » Netweaver Application Server Abap » Version: 750

cpe:2.3:a:sap:netweaver_application_server_abap:750
Sap » Netweaver Application Server Abap » Version: 789

cpe:2.3:a:sap:netweaver_application_server_abap:789
Sap » Netweaver Application Server Abap » Version: 804

cpe:2.3:a:sap:netweaver_application_server_abap:804

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-41212

Products

Pricing

Contact Us