CVE-2022-22532

N/A

In SAP NetWeaver Application Server Java - versions KRNL64NUC 7.22, 7.22EXT, 7.49, KRNL64UC, 7.22, 7.22EXT, 7.49, 7.53, KERNEL 7.22, 7.49, 7.53, an unauthenticated attacker could submit a crafted HTTP server request which triggers improper shared memory buffer handling. This could allow the malicious payload to be executed and hence execute functions that could be impersonating the victim or even steal the victim's logon session.

N/A

HTTP请求的解释不一致性(HTTP请求私运)

SAP多个产品环境问题漏洞

SAP NetWeaver Application Server Java和SAP NetWeaver Application Server都是德国思爱普（SAP）公司的产品。SAP NetWeaver Application Server Java是一款提供了Java运行环境的应用程序服务器。该产品主要用于开发和运行Java EE应用程序。SAP NetWeaver Application Server是一款应用程序服务器。 SAP多个产品存在环境问题漏洞，攻击者可利用该漏洞威胁易受攻击的系统，其中包括

N/A

N/A