Vulnerabilities > SAP > Message Server

DATE CVE VULNERABILITY TITLE RISK
2023-08-08 CVE-2023-37491 Incorrect Authorization vulnerability in SAP Message Server
The ACL (Access Control List) of SAP Message Server - versions KERNEL 7.22, KERNEL 7.53, KERNEL 7.54, KERNEL 7.77, RNL64UC 7.22, RNL64UC 7.22EXT, RNL64UC 7.53, KRNL64NUC 7.22, KRNL64NUC 7.22EXT, can be bypassed in certain conditions, which may enable an authenticated malicious user to enter the network of the SAP systems served by the attacked SAP Message server.
network
low complexity
sap CWE-863
8.8