Unrated severityNVD Advisory· Published Aug 9, 2022· Updated Aug 3, 2024
CVE-2022-35293
CVE-2022-35293
Description
Due to insecure session management, SAP Enable Now allows an unauthenticated attacker to gain access to user's account. On successful exploitation, an attacker can view or modify user data causing limited impact on confidentiality and integrity of the application.
Affected products
2- SAP SE/SAP Enable Now Managerv5Range: 1.0
Patches
Vulnerability mechanics
References
2- launchpad.support.sap.commitrex_refsource_MISC
- www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.