Unrated severityNVD Advisory· Published Jul 11, 2023· Updated Oct 23, 2024
Improper authentication vulnerability in SAP NetWeaver AS ABAP and ABAP Platform
CVE-2023-35874
Description
SAP NetWeaver Application Server ABAP and ABAP Platform - version KRNL64NUC, 7.22, KRNL64NUC 7.22EXT, KRNL64UC 7.22, KRNL64UC 7.22EXT, KRNL64UC 7.53, KERNEL 7.22, KERNEL, 7.53, KERNEL 7.77, KERNEL 7.81, KERNEL 7.85, KERNEL 7.89, KERNEL 7.54, KERNEL 7.92, KERNEL 7.93, under some conditions, performs improper authentication checks for functionalities that require user identity. An attacker can perform malicious actions over the network, extending the scope of impact, causing a limited impact on confidentiality, integrity and availability.
Affected products
2- Range: KRNL64NUC 722
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.