7.5
CVE-2022-28773
- EPSS 1.14%
- Veröffentlicht 12.04.2022 17:15:10
- Zuletzt bearbeitet 21.11.2024 06:57:54
- Quelle cna@sap.com
- Teams Watchlist Login
- Unerledigt Login
Due to an uncontrolled recursion in SAP Web Dispatcher and SAP Internet Communication Manager, the application may crash, leading to denial of service, but can be restarted automatically.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
SAP ≫ Web Dispatcher Version7.53
SAP ≫ Web Dispatcher Version7.77
SAP ≫ Web Dispatcher Version7.81
SAP ≫ Web Dispatcher Version7.85
SAP ≫ Web Dispatcher Version7.86
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.14% | 0.772 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:P
|
CWE-674 Uncontrolled Recursion
The product does not properly control the amount of recursion that takes place, consuming excessive resources, such as allocated memory or the program stack.