CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-40308

SAP CommonCryptoLib allows an unauthenticated attacker to craft a request, which when submitted to an open port causes a memory corruption error in a library which in turn causes the target component to crash making it unavailable. There is no ability to view or modify any information.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 33.6%

CVSS Severity

CVSS v3 Score 7.5

References

Products affected by CVE-2023-40308

Sap » Commoncryptolib » Version: 8.0.0

cpe:2.3:a:sap:commoncryptolib:8.0.0
Sap » Content Server » Version: 6.50

cpe:2.3:a:sap:content_server:6.50
Sap » Content Server » Version: 7.53

cpe:2.3:a:sap:content_server:7.53
Sap » Content Server » Version: 7.54

cpe:2.3:a:sap:content_server:7.54
Sap » Extended Application Services And Runtime » Version: 1.0

cpe:2.3:a:sap:extended_application_services_and_runtime:1.0
Sap » Hana Database » Version: 2.0

cpe:2.3:a:sap:hana_database:2.0
Sap » Host Agent » Version: 722

cpe:2.3:a:sap:host_agent:722
Sap » Netweaver Application Server Abap » Version: 7.22ext

cpe:2.3:a:sap:netweaver_application_server_abap:7.22ext
Sap » Netweaver Application Server Abap » Version: kernel64nuc_7.22

cpe:2.3:a:sap:netweaver_application_server_abap:kernel64nuc_7.22
Sap » Netweaver Application Server Abap » Version: kernel64nuc_7.22ext

cpe:2.3:a:sap:netweaver_application_server_abap:kernel64nuc_7.22ext
Sap » Netweaver Application Server Abap » Version: kernel64uc_7.22

cpe:2.3:a:sap:netweaver_application_server_abap:kernel64uc_7.22
Sap » Netweaver Application Server Abap » Version: kernel64uc_7.22ext

cpe:2.3:a:sap:netweaver_application_server_abap:kernel64uc_7.22ext
Sap » Netweaver Application Server Abap » Version: kernel64uc_7.53

cpe:2.3:a:sap:netweaver_application_server_abap:kernel64uc_7.53
Sap » Netweaver Application Server Abap » Version: kernel64uc_8.04

cpe:2.3:a:sap:netweaver_application_server_abap:kernel64uc_8.04
Sap » Netweaver Application Server Abap » Version: kernel_7.22

cpe:2.3:a:sap:netweaver_application_server_abap:kernel_7.22
Sap » Netweaver Application Server Abap » Version: kernel_7.53

cpe:2.3:a:sap:netweaver_application_server_abap:kernel_7.53
Sap » Netweaver Application Server Abap » Version: kernel_7.54

cpe:2.3:a:sap:netweaver_application_server_abap:kernel_7.54
Sap » Netweaver Application Server Abap » Version: kernel_7.77

cpe:2.3:a:sap:netweaver_application_server_abap:kernel_7.77
Sap » Netweaver Application Server Abap » Version: kernel_7.85

cpe:2.3:a:sap:netweaver_application_server_abap:kernel_7.85
Sap » Netweaver Application Server Abap » Version: kernel_7.89

cpe:2.3:a:sap:netweaver_application_server_abap:kernel_7.89
Sap » Netweaver Application Server Abap » Version: kernel_7.91

cpe:2.3:a:sap:netweaver_application_server_abap:kernel_7.91
Sap » Netweaver Application Server Abap » Version: kernel_7.92

cpe:2.3:a:sap:netweaver_application_server_abap:kernel_7.92
Sap » Netweaver Application Server Abap » Version: kernel_7.93

cpe:2.3:a:sap:netweaver_application_server_abap:kernel_7.93
Sap » Netweaver Application Server Abap » Version: kernel_8.04

cpe:2.3:a:sap:netweaver_application_server_abap:kernel_8.04
Sap » Netweaver Application Server Java » Version: kernel64nuc_7.22

cpe:2.3:a:sap:netweaver_application_server_java:kernel64nuc_7.22
Sap » Netweaver Application Server Java » Version: kernel64nuc_7.22ext

cpe:2.3:a:sap:netweaver_application_server_java:kernel64nuc_7.22ext
Sap » Netweaver Application Server Java » Version: kernel64uc_7.22

cpe:2.3:a:sap:netweaver_application_server_java:kernel64uc_7.22
Sap » Netweaver Application Server Java » Version: kernel64uc_7.22ext

cpe:2.3:a:sap:netweaver_application_server_java:kernel64uc_7.22ext
Sap » Netweaver Application Server Java » Version: kernel64uc_7.53

cpe:2.3:a:sap:netweaver_application_server_java:kernel64uc_7.53
Sap » Netweaver Application Server Java » Version: kernel64uc_8.04

cpe:2.3:a:sap:netweaver_application_server_java:kernel64uc_8.04
Sap » Netweaver Application Server Java » Version: kernel_7.22

cpe:2.3:a:sap:netweaver_application_server_java:kernel_7.22
Sap » Netweaver Application Server Java » Version: kernel_7.53

cpe:2.3:a:sap:netweaver_application_server_java:kernel_7.53
Sap » Netweaver Application Server Java » Version: kernel_7.54

cpe:2.3:a:sap:netweaver_application_server_java:kernel_7.54
Sap » Netweaver Application Server Java » Version: kernel_7.77

cpe:2.3:a:sap:netweaver_application_server_java:kernel_7.77
Sap » Netweaver Application Server Java » Version: kernel_7.85

cpe:2.3:a:sap:netweaver_application_server_java:kernel_7.85
Sap » Netweaver Application Server Java » Version: kernel_7.89

cpe:2.3:a:sap:netweaver_application_server_java:kernel_7.89
Sap » Netweaver Application Server Java » Version: kernel_7.91

cpe:2.3:a:sap:netweaver_application_server_java:kernel_7.91
Sap » Netweaver Application Server Java » Version: kernel_7.92

cpe:2.3:a:sap:netweaver_application_server_java:kernel_7.92
Sap » Netweaver Application Server Java » Version: kernel_7.93

cpe:2.3:a:sap:netweaver_application_server_java:kernel_7.93
Sap » Netweaver Application Server Java » Version: kernel_8.04

cpe:2.3:a:sap:netweaver_application_server_java:kernel_8.04
Sap » Sapssoext » Version: 17.0

cpe:2.3:a:sap:sapssoext:17.0
Sap » Web Dispatcher » Version: 7.22ext

cpe:2.3:a:sap:web_dispatcher:7.22ext
Sap » Web Dispatcher » Version: 7.53

cpe:2.3:a:sap:web_dispatcher:7.53
Sap » Web Dispatcher » Version: 7.54

cpe:2.3:a:sap:web_dispatcher:7.54
Sap » Web Dispatcher » Version: 7.77

cpe:2.3:a:sap:web_dispatcher:7.77
Sap » Web Dispatcher » Version: 7.85

cpe:2.3:a:sap:web_dispatcher:7.85
Sap » Web Dispatcher » Version: 7.89

cpe:2.3:a:sap:web_dispatcher:7.89

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-40308

Products

Pricing

Contact Us