Skip to content
/ CVE-2022-41272 Public

Improper access control in SAP NetWeaver Process Integration

3 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

redrays-io/CVE-2022-41272

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits

README.md

README.md

 
 

Repository files navigation

CVE-2022-41272

On this repository, we will briefly write information about the CVE-2022-41272 vulnerability.

The vulnerability exists on the SAP P4 service that runs on the 5NN04 port. Where NN is an instance number, that can be from 00-99.

There are remote call functions that an attacker can call without any authentication.

In the following image, you can see the patch released by SAP. image

The PoC is ready and deployed to the RedRays Security Platform.

PS. You can star and start watching the repository, and when we open the PoC, you will receive the notification.

link to original twitt

About

Improper access control in SAP NetWeaver Process Integration

Resources

Readme
Activity
Custom properties

Stars

3 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published