Vulnerabilities > CVE-2022-35295 - Unspecified vulnerability in SAP Host Agent 7.22
Attack vector
NETWORK Attack complexity
LOW Privileges required
HIGH Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE Summary
In SAP Host Agent (SAPOSCOL) - version 7.22, an attacker may use files created by saposcol to escalate privileges for themselves.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
References
- http://packetstormsecurity.com/files/170233/SAP-Host-Agent-Privilege-Escalation.html
- http://packetstormsecurity.com/files/170233/SAP-Host-Agent-Privilege-Escalation.html
- http://seclists.org/fulldisclosure/2022/Dec/12
- http://seclists.org/fulldisclosure/2022/Dec/12
- https://launchpad.support.sap.com/#/notes/3159736
- https://launchpad.support.sap.com/#/notes/3159736
- https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html
- https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html