Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-35874

SAP NetWeaver Application Server ABAP and ABAP Platform - version KRNL64NUC, 7.22, KRNL64NUC 7.22EXT, KRNL64UC 7.22, KRNL64UC 7.22EXT, KRNL64UC 7.53, KERNEL 7.22, KERNEL, 7.53, KERNEL 7.77, KERNEL 7.81, KERNEL 7.85, KERNEL 7.89, KERNEL 7.54, KERNEL 7.92, KERNEL 7.93, under some conditions, performs improper authentication checks for functionalities that require user identity. An attacker can perform malicious actions over the network, extending the scope of impact, causing a limited impact on confidentiality, integrity and availability.

Published

2023-07-11T03:15:10.050

Last Modified

2024-11-21T08:08:53.180

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.0 (MEDIUM)

Weaknesses
  • Type: Primary
    CWE-306
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application sap netweaver_application_server_abap kernel_7.22 Yes
Application sap netweaver_application_server_abap kernel_7.53 Yes
Application sap netweaver_application_server_abap kernel_7.54 Yes
Application sap netweaver_application_server_abap kernel_7.77 Yes
Application sap netweaver_application_server_abap kernel_7.81 Yes
Application sap netweaver_application_server_abap kernel_7.85 Yes
Application sap netweaver_application_server_abap kernel_7.89 Yes
Application sap netweaver_application_server_abap kernel_7.92 Yes
Application sap netweaver_application_server_abap kernel_7.93 Yes
Application sap netweaver_application_server_abap krnl64nuc_7.22 Yes
Application sap netweaver_application_server_abap krnl64nuc_7.22ext Yes
Application sap netweaver_application_server_abap krnl64uc_7.22 Yes
Application sap netweaver_application_server_abap krnl64uc_7.22ext Yes
Application sap netweaver_application_server_abap krnl64uc_7.53 Yes
References