Unrated severityNVD Advisory· Published Jul 11, 2023· Updated Oct 23, 2024
Directory Traversal vulnerability in SAP NetWeaver (BI CONT ADD ON)
CVE-2023-33989
Description
An attacker with non-administrative authorizations in SAP NetWeaver (BI CONT ADD ON) - versions 707, 737, 747, 757, can exploit a directory traversal flaw to over-write system files. Data from confidential files cannot be read but potentially some OS files can be over-written leading to system compromise.
Affected products
2=707, 737, 747, 757+ 1 more
- (no CPE)range: =707, 737, 747, 757
- (no CPE)range: 707
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.