CVE-2023-0012 MEDIUM

CVE-2023-0012: Local Privilege Escalation in SAP Host Agent (Windows)

Vendor Sap
Product Host Agent (Windows)
Weakness CWE-284
Published January 10, 2023
Last update April 9, 2025

CVSS base score

6.4/10
Attack vector Local
Attack complexity High
Privileges required High
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

In SAP Host Agent (Windows) - versions 7.21, 7.22, an attacker who gains local membership to SAP_LocalAdmin could be able to replace executables with a malicious file that will be started under a privileged account. Note that by default all user members of SAP_LocaAdmin are denied the ability to logon locally by security policy so that this can only occur if the system has already been compromised.

Key dates

02Disclosure timeline

January 10, 2023 CVE published
April 9, 2025 Record updated