Vulnerabilities > SAP > Adaptive Server Enterprise > High

DATE CVE VULNERABILITY TITLE RISK
2022-06-14 CVE-2022-31594 Unspecified vulnerability in SAP Adaptive Server Enterprise
A highly privileged user can exploit SUID-root program to escalate his privileges to root on a local Unix system.
local
low complexity
sap
7.2
2022-06-14 CVE-2022-31595 Missing Authorization vulnerability in SAP Adaptive Server Enterprise
SAP Financial Consolidation - version 1010,?does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges.
network
low complexity
sap CWE-862
8.8
2022-02-09 CVE-2022-22528 Uncontrolled Search Path Element vulnerability in SAP Adaptive Server Enterprise 16.0
SAP Adaptive Server Enterprise (ASE) - version 16.0, installation makes an entry in the system PATH environment variable in Windows platform which, under certain conditions, allows a Standard User to execute malicious Windows binaries which may lead to privilege escalation on the local system.
local
low complexity
sap CWE-427
7.8