CVE-2023-35871

Published: Jul 11, 2023Modified: Nov 21, 2024

9.4

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H

Exploitability: 3.9 / Impact: 5.5

Source: NVD

Description

The SAP Web Dispatcher - versions WEBDISP 7.53, WEBDISP 7.54, WEBDISP 7.77, WEBDISP 7.85, WEBDISP 7.89, WEBDISP 7.91, WEBDISP 7.92, WEBDISP 7.93, KERNEL 7.53, KERNEL 7.54 KERNEL 7.77, KERNEL 7.85, KERNEL 7.89, KERNEL 7.91, KERNEL 7.92, KERNEL 7.93, KRNL64UC 7.53, HDB 2.00, XS_ADVANCED_RUNTIME 1.00, SAP_EXTENDED_APP_SERVICES 1, has a vulnerability that can be exploited by an unauthenticated attacker to cause memory corruption through logical errors in memory management this may leads to information disclosure or system crashes, which can have low impact on confidentiality and high impact on the integrity and availability of the system.

Affected (20)

Products: Sap: Web Dispatcher

Sap

1 product

Web Dispatcher

Configuration A

20 vulnerable

Vulnerable Software	Affected Versions
Sap Web Dispatcher	Version 7.53
Sap Web Dispatcher	Version 7.54
Sap Web Dispatcher	Version 7.77
Sap Web Dispatcher	Version 7.85
Sap Web Dispatcher	Version 7.89
Sap Web Dispatcher	Version 7.91
Sap Web Dispatcher	Version 7.92
Sap Web Dispatcher	Version 7.93
Sap Web Dispatcher	Version hdb_2.00
Sap Web Dispatcher	Version kernel_7.53
Sap Web Dispatcher	Version kernel_7.54
Sap Web Dispatcher	Version kernel_7.77
Sap Web Dispatcher	Version kernel_7.85
Sap Web Dispatcher	Version kernel_7.89
Sap Web Dispatcher	Version kernel_7.91
Sap Web Dispatcher	Version kernel_7.92
Sap Web Dispatcher	Version kernel_7.93
Sap Web Dispatcher	Version krnl64uc_7.53
Sap Web Dispatcher	Version sap_extended_app_services_1
Sap Web Dispatcher	Version xs_advanced_runtime_1.00