Published on: Not Yet Published
Last Modified on: 08/15/2022 12:17:00 PM UTC
CVE-2022-35293Source: Mitre Source: NIST CVE.ORG Print: PDF
Certain versions of Enable Now Manager from Sap contain the following vulnerability:
Due to insecure session management, SAP Enable Now allows an unauthenticated attacker to gain access to user's account. On successful exploitation, an attacker can view or modify user data causing limited impact on confidentiality and integrity of the application.
- CVE-2022-35293 has been assigned by [email protected] to track the vulnerability - currently rated as CRITICAL severity.
- Affected Vendor/Software: SAP SE - SAP Enable Now Manager version = 1.0
CVSS3 Score: 9.1 - CRITICAL
|No Description Provided|| launchpad.support.sap.com |
|SAP Patch Day Blog|| web.archive.org |
Inactive LinkNot Archived
There are currently no QIDs associated with this CVE
Known Affected Configurations (CPE V2.3)
|Application||Sap||Enable Now Manager||1.0||All||All||All|
No vendor comments have been submitted for this CVE
|@CVEreport||CVE-2022-35293 : Due to insecure session management, #SAP Enable Now allows an unauthenticated attacker to gain acc… twitter.com/i/web/status/1…||2022-08-10 20:23:05|