Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-35871

The SAP Web Dispatcher - versions WEBDISP 7.53, WEBDISP 7.54, WEBDISP 7.77, WEBDISP 7.85, WEBDISP 7.89, WEBDISP 7.91, WEBDISP 7.92, WEBDISP 7.93, KERNEL 7.53, KERNEL 7.54 KERNEL 7.77, KERNEL 7.85, KERNEL 7.89, KERNEL 7.91, KERNEL 7.92, KERNEL 7.93, KRNL64UC 7.53, HDB 2.00, XS_ADVANCED_RUNTIME 1.00, SAP_EXTENDED_APP_SERVICES 1, has a vulnerability that can be exploited by an unauthenticated attacker to cause memory corruption through logical errors in memory management this may leads to information disclosure or system crashes, which can have low impact on confidentiality and high impact on the integrity and availability of the system.

Published

2023-07-11T03:15:09.867

Last Modified

2024-11-21T08:08:52.087

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.7 (HIGH)

Weaknesses
  • Type: Primary
    CWE-787
  • Type: Secondary
    CWE-787
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application sap web_dispatcher 7.53 Yes
Application sap web_dispatcher 7.54 Yes
Application sap web_dispatcher 7.77 Yes
Application sap web_dispatcher 7.85 Yes
Application sap web_dispatcher 7.89 Yes
Application sap web_dispatcher 7.91 Yes
Application sap web_dispatcher 7.92 Yes
Application sap web_dispatcher 7.93 Yes
Application sap web_dispatcher hdb_2.00 Yes
Application sap web_dispatcher kernel_7.53 Yes
Application sap web_dispatcher kernel_7.54 Yes
Application sap web_dispatcher kernel_7.77 Yes
Application sap web_dispatcher kernel_7.85 Yes
Application sap web_dispatcher kernel_7.89 Yes
Application sap web_dispatcher kernel_7.91 Yes
Application sap web_dispatcher kernel_7.92 Yes
Application sap web_dispatcher kernel_7.93 Yes
Application sap web_dispatcher krnl64uc_7.53 Yes
Application sap web_dispatcher sap_extended_app_services_1 Yes
Application sap web_dispatcher xs_advanced_runtime_1.00 Yes
References