CVE-2022-28217

Some part of SAP NetWeaver (EP Web Page Composer) does not sufficiently validate an XML document accepted from an untrusted source, which allows an adversary to exploit unprotected XML parking at endpoints, and a possibility to conduct SSRF attacks that could compromise system?s Availability by causing system to crash.

CVSS v3 6.5 MEDIUM
CVSS v2.0 4.0 MEDIUM

6.5^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 2.8 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

4.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:S/C:N/I:N/A:P

Exploitability : 8.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
https://launchpad.support.sap.com/#/notes/3148377	Permissions Required Vendor Advisory
https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html	Vendor Advisory
https://launchpad.support.sap.com/#/notes/3148377	Permissions Required Vendor Advisory
https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:sap:netweaver:7.20:::::::*
	cpe:2.3:a:sap:netweaver:7.30:::::::*
	cpe:2.3:a:sap:netweaver:7.31:::::::*
	cpe:2.3:a:sap:netweaver:7.40:::::::*
	cpe:2.3:a:sap:netweaver:7.50:::::::*

History

21 Nov 2024, 06:56

Type	Values Removed	Values Added
References	~~() https://launchpad.support.sap.com/#/notes/3148377 - Permissions Required, Vendor Advisory~~	() https://launchpad.support.sap.com/#/notes/3148377 - Permissions Required, Vendor Advisory
References	~~() https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html - Vendor Advisory~~	() https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html - Vendor Advisory

Information

Published : 2022-06-13 17:15

Updated : 2024-11-21 06:56

NVD link : CVE-2022-28217

Mitre link : CVE-2022-28217

CVE.ORG link : CVE-2022-28217

JSON object : View

Products Affected

sap

netweaver

CWE

CWE-918

Server-Side Request Forgery (SSRF)

{"id": "CVE-2022-28217", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:P", "authentication": "SINGLE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 2.8}]}, "published": "2022-06-13T17:15:10.017", "references": [{"url": "https://launchpad.support.sap.com/#/notes/3148377", "tags": ["Permissions Required", "Vendor Advisory"], "source": "cna@sap.com"}, {"url": "https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html", "tags": ["Vendor Advisory"], "source": "cna@sap.com"}, {"url": "https://launchpad.support.sap.com/#/notes/3148377", "tags": ["Permissions Required", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "cna@sap.com", "description": [{"lang": "en", "value": "CWE-918"}]}, {"type": "Secondary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-918"}]}], "descriptions": [{"lang": "en", "value": "Some part of SAP NetWeaver (EP Web Page Composer) does not sufficiently validate an XML document accepted from an untrusted source, which allows an adversary to exploit unprotected XML parking at endpoints, and a possibility to conduct SSRF attacks that could compromise system\ufffds Availability by causing system to crash."}, {"lang": "es", "value": "Alguna parte de SAP NetWeaver (EP Web Page Composer) no valida suficientemente un documento XML aceptado desde una fuente no fiable, lo que permite a un adversario explotar el estacionamiento XML desprotegido en los puntos finales, y una posibilidad de llevar a cabo ataques SSRF que podr\u00edan comprometer la disponibilidad del sistema provocando su ca\u00edda"}], "lastModified": "2024-11-21T06:56:58.137", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:sap:netweaver:7.20:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "53B11A3B-C559-428C-8946-7FD9FFBFA1BC"}, {"criteria": "cpe:2.3:a:sap:netweaver:7.30:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "606EFE4F-57A4-44E2-A98D-F0867A658218"}, {"criteria": "cpe:2.3:a:sap:netweaver:7.31:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FECD5E96-7669-4747-80D2-27F95BF420BC"}, {"criteria": "cpe:2.3:a:sap:netweaver:7.40:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F019F7F5-7740-4BD4-850F-D7A1923C6200"}, {"criteria": "cpe:2.3:a:sap:netweaver:7.50:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F2B37045-2FB7-49BB-AE38-B84FAA6ADFB0"}], "operator": "OR"}]}], "sourceIdentifier": "cna@sap.com"}