CVE-2022-32248
Severity Score
5.3
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Due to missing input validation in the Manage Checkbooks component of SAP S/4HANA - version 101, 102, 103, 104, 105, 106, an attacker could insert or edit the value of an existing field in the database. This leads to an impact on the integrity of the data.
Debido a una falta de comprobación de entrada en el componente Manage Checkbooks de SAP S/4HANA - versiones 101, 102, 103, 104, 105, 106, un atacante podrÃa insertar o editar el valor de un campo existente en la base de datos. Esto conlleva a un impacto en la integridad de los datos
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2022-06-02 CVE Reserved
- 2022-07-12 CVE Published
- 2024-02-02 EPSS Updated
- 2024-08-03 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-20: Improper Input Validation
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html | 2022-07-20 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Sap Search vendor "Sap" | S\/4hana Search vendor "Sap" for product "S\/4hana" | 101 Search vendor "Sap" for product "S\/4hana" and version "101" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | S\/4hana Search vendor "Sap" for product "S\/4hana" | 102 Search vendor "Sap" for product "S\/4hana" and version "102" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | S\/4hana Search vendor "Sap" for product "S\/4hana" | 103 Search vendor "Sap" for product "S\/4hana" and version "103" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | S\/4hana Search vendor "Sap" for product "S\/4hana" | 104 Search vendor "Sap" for product "S\/4hana" and version "104" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | S\/4hana Search vendor "Sap" for product "S\/4hana" | 105 Search vendor "Sap" for product "S\/4hana" and version "105" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | S\/4hana Search vendor "Sap" for product "S\/4hana" | 106 Search vendor "Sap" for product "S\/4hana" and version "106" | - |
Affected
| ||||||