CVE-2022-31592

CVE-2022-31592

Vendor Sap Se
Product SAP Enterprise Extension Defense Forces & Public Security (EA-DFPS)
Weakness CWE-862 · Missing authorization
Published July 12, 2022
Last update August 3, 2024

CVSS base score

What the vulnerability does

01Description

The application SAP Enterprise Extension Defense Forces & Public Security - versions 605, 606, 616,617,618, 802, 803, 804, 805, 806, does not perform necessary authorization checks for an authenticated user over the network, resulting in escalation of privileges leading to a limited impact on confidentiality.

Key dates

02Disclosure timeline

July 12, 2022 CVE published
August 3, 2024 Record updated