Unrated severityNVD Advisory· Published Nov 8, 2022· Updated May 2, 2025
CVE-2022-41212
CVE-2022-41212
Description
Due to insufficient input validation, SAP NetWeaver Application Server ABAP and ABAP Platform allows an attacker with high level privileges to use a remote enabled function to read a file which is otherwise restricted. On successful exploitation an attacker can completely compromise the confidentiality of the application.
Affected products
3- SAP SE/SAP NetWeaver Application Server ABAP and ABAP Platformv5Range: = 700
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.