Unrated severityNVD Advisory· Published Dec 12, 2023· Updated Aug 2, 2024
SQL Injection vulnerability in SAP NetWeaver Application Server ABAP and ABAP Platform
CVE-2023-49581
Description
SAP GUI for Windows and SAP GUI for Java allow an unauthenticated attacker to access information which would otherwise be restricted and confidential. In addition, this vulnerability allows the unauthenticated attacker to write data to a database table. By doing so the attacker could increase response times of the AS ABAP, leading to mild impact on availability.
Affected products
3- Range: SAP_BASIS 700
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.