Due to improper error handling in SAP NetWeaver Application Server Java - versions KRNL64NUC 7.22, 7.22EXT, 7.49, KRNL64UC, 7.22, 7.22EXT, 7.49, 7.53, KERNEL 7.22, 7.49, 7.53, an attacker could submit multiple HTTP server requests resulting in errors, such that it consumes the memory buffer. This could result in system shutdown rendering the system unavailable.
References
| Link | Resource |
|---|---|
| https://launchpad.support.sap.com/#/notes/3123427 | Permissions Required Vendor Advisory |
| https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2022-02-09 23:15
Updated : 2024-02-28 19:09
NVD link : CVE-2022-22533
Mitre link : CVE-2022-22533
CVE.ORG link : CVE-2022-22533
JSON object : View
Products Affected
sap
- netweaver_application_server_java
CWE
CWE-416
Use After Free