Unrated severityNVD Advisory· Published Oct 11, 2022· Updated Aug 3, 2024
CVE-2022-39802
CVE-2022-39802
Description
SAP Manufacturing Execution - versions 15.1, 15.2, 15.3, allows an attacker to exploit insufficient validation of a file path request parameter. The intended file path can be manipulated to allow arbitrary traversal of directories on the remote server. The file content within each directory can be read which may lead to information disclosure.
Affected products
2- Range: = 15.1 / 15.2 / 15.3
- SAP SE/SAP Manufacturing Executionv5Range: 15.1
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.