VYPR
Unrated severityNVD Advisory· Published Dec 12, 2023· Updated Aug 2, 2024

SQL Injection vulnerability in SAP NetWeaver Application Server ABAP and ABAP Platform

CVE-2023-49581

Description

SAP GUI for Windows and SAP GUI for Java allow an unauthenticated attacker to access information which would otherwise be restricted and confidential. In addition, this vulnerability allows the unauthenticated attacker to write data to a database table. By doing so the attacker could increase response times of the AS ABAP, leading to mild impact on availability.

Affected products

3

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.