Issued: Sunday, 16 October, 2022 |
Last Revision: Sunday, 16 October, 2022 |
Vendor: |
Product: |
Severity Level: |
SAP released 15 new security notes on its October 2022 Security Patch Day, including two ‘hot news’ notes dealing with critical vulnerabilities.
The most severe of these issues is CVE-2022-39802 (CVSS score of 9.9), which is described as a file path traversal in Manufacturing Execution. The bug impacts Work Instruction Viewer and Visual Test and Repair, two plugins for displaying work instructions and models.
The URL to request this information included a file path parameter that could be manipulated to allow arbitrary traversal of directories on the remote server. The file content within each directory could be read in the user context of the OS user executing the NetWeaver process or service.
The second critical vulnerability, CVE-2022-41204 (CVSS score of 9.6), impacts the SAP Commerce login form and could lead to account hijacking through URL redirection.
CVE/Vulnerability | Description | CVSS 3.0 Base Score | Exploitable |
CVE-2022-39802 | File path traversal vulnerability in SAP Manufacturing Execution | 9.9 | No |
CVE-2022-41204 | Account hijacking through URL Redirection vulnerability in SAP Commerce login form | 9.6 | No |
CVE-2022-39013 | BusinessObjects Business Intelligence Platform (Program Objects) | 8.2 | No |
CVE-2022-31596 | Information Disclosure vulnerability in SAP BusinessObjects Business Intelligence Platform (MonitoringDB) | 8.2 | No |
CVE-2022-35292 | Buffer Overflow in SAP SQL Anywhere and SAP IQ | 8.1 | No |
CVE-2022-39015 | Information Disclosure vulnerability in SAP BusinessObjects Business Intelligence Platform (Admin Tools/ Query Builder) | 7.7 | No |
CVE-2022-41186-89 CVE-2022-41190-99 CVE-2022-41200-02 | 3D Visual Enterprise Viewer | 7.0 | No |
CVE-2022-39803-08 CVE-2022-41166-85 | 3D Visual Enterprise Author | 7.0 | No |
Table 1: Vulnerability details
|
| |||
| CVE/Vulnerability | Product(s) Detail |
| |
| CVE-2022-39802 | Product-SAP Manufacturing Execution, Versions -15.1, 15.2, 15.3 |
| |
| CVE-2022-41204 | Product–SAP Commerce, Versions -1905, 2005, 2105, 2011, 2205 |
| |
| CVE-2022-39013 | Product-SAP BusinessObjects Business Intelligence Platform (Program Objects), Versions -420, 430 |
| |
| CVE-2022-31596 | Product-SAP Business Objects Platform (MonitoringDB), Version -430 |
| |
| CVE-2022-35292 | Product-SAP SQL Anywhere, Version -17.0Product-SAP IQ, Version -16.1 |
| |
| CVE-2022-39015 | Product-SAP BusinessObjects Business Intelligence Platform(Admin Tools/Query Builder),Versions–420, 430 |
| |
| CVE-2022-41186-89 CVE-2022-41190-99 CVE-2022-41200-02 | SAP 3D Visual Enterprise Product-SAP 3D Visual Enterprise Viewer, Version -9 |
| |
| CVE-2022-39803-08 CVE-2022-41166-85 | Product-SAP 3D Visual Enterprise Author, Version -9 |
| |
Table 2: Vulnerable versions
We recommend all entities must follow the “SAP recommendation, update to the latest version.