Security Advisory

CVE-2023-33989

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-07-11 02:28:49

Last updated 2024-10-23 17:29:51

Assigner sap

State PUBLISHED

Description

An attacker with non-administrative authorizations in SAP NetWeaver (BI CONT ADD ON) - versions 707, 737, 747, 757, can exploit a directory traversal flaw to over-write system files. Data from confidential files cannot be read but potentially some OS files can be over-written leading to system compromise.

← Browse all CVEs View on cve.org ↗