CVE-2022-22540

CVE-2022-22540

Vendor Sap Se

Product SAP NetWeaver AS ABAP (Workplace Server)

Weakness CWE-89 · SQLi

Published February 9, 2022

Last update August 3, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

SAP NetWeaver AS ABAP (Workplace Server) - versions 700, 701, 702, 731, 740, 750, 751, 752, 753, 754, 755, 756, 787, allows an attacker to execute crafted database queries, that could expose the backend database. Successful attacks could result in disclosure of a table of contents from the system, but no risk of modification possible.

Key dates

02Disclosure timeline

February 9, 2022 CVE published

August 3, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2022-22540

Related vulnerabilities

Identifiers

CVE CVE-2022-22540

CWE CWE-89

Affected versions

Vendor Sap Se

Product SAP NetWeaver AS ABAP (Workplace Server)

Affected 700

Vendor Sap Se

Product SAP NetWeaver AS ABAP (Workplace Server)

Affected 701

Vendor Sap Se

Product SAP NetWeaver AS ABAP (Workplace Server)

Affected 702

Vendor Sap Se

Product SAP NetWeaver AS ABAP (Workplace Server)

Affected 731

Vendor Sap Se

Product SAP NetWeaver AS ABAP (Workplace Server)

Affected 740

Vendor Sap Se

Product SAP NetWeaver AS ABAP (Workplace Server)

Affected 750

Vendor Sap Se

Product SAP NetWeaver AS ABAP (Workplace Server)

Affected 751

Vendor Sap Se

Product SAP NetWeaver AS ABAP (Workplace Server)

Affected 752

Vendor Sap Se

Product SAP NetWeaver AS ABAP (Workplace Server)

Affected 753

Vendor Sap Se

Product SAP NetWeaver AS ABAP (Workplace Server)

Affected 754

Vendor Sap Se

Product SAP NetWeaver AS ABAP (Workplace Server)

Affected 755

Vendor Sap Se

Product SAP NetWeaver AS ABAP (Workplace Server)

Affected 756

Vendor Sap Se

Product SAP NetWeaver AS ABAP (Workplace Server)

Affected 787

01Description

02Disclosure timeline

03References

04Related CVE