Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SQL Injection vulnerability in SAP ABAP Platform
Vulnerability Description
Due to insufficient input sanitization, SAP ABAP - versions 751, 753, 753, 754, 756, 757, 791, allows an authenticated high privileged user to alter the current session of the user by injecting the malicious database queries over the network and gain access to the unintended data. This may lead to a high impact on the confidentiality and no impact on the availability and integrity of the application.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N
Vulnerability Type
SQL命令中使用的特殊元素转义处理不恰当(SQL注入)
Vulnerability Title
SAP ABAP Platform SQL注入漏洞
Vulnerability Description
SAP ABAP Platform是德国思爱普(SAP)公司的一个基于 ABAP 的 SAP 解决方案。 SAP ABAP Platform 存在SQL注入漏洞,该漏洞源于输入清理不充分,经过身份验证的攻击者利用该漏洞可以通过在网络上注入恶意数据库查询来改变用户的当前会话,并获得对非预期数据的访问。以下产品和版本受到影响:SAP ABAP 751, 753, 753, 754, 756, 757, 791版本。
CVSS Information
N/A
Vulnerability Type
N/A