Vulnerabilities > SAP > Sapsetup

DATE CVE VULNERABILITY TITLE RISK
2023-04-11 CVE-2023-29187 Uncontrolled Search Path Element vulnerability in SAP Sapsetup 9.0
A Windows user with basic user authorization can exploit a DLL hijacking attack in SapSetup (Software Installation Program) - version 9.0, resulting in a privilege escalation running code as administrator of the very same Windows PC.
local
high complexity
sap CWE-427
6.7