CVE-2022-28772
published 2022-04-12CVE-2022-28772: By overlong input values an attacker may force overwrite of the internal program stack in SAP Web Dispatcher - versions 7.53, 7.77, 7.81, 7.85, 7.86, or…
high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
By overlong input values an attacker may force overwrite of the internal program stack in SAP Web Dispatcher - versions 7.53, 7.77, 7.81, 7.85, 7.86, or Internet Communication Manager - versions KRNL64NUC 7.22, 7.22EXT, 7.49, KRNL64UC 7.22, 7.22EXT, 7.49, 7.53, KERNEL 7.22, 7.49, 7.53, 7.77, 7.81, 7.85, 7.86, which makes these programs unavailable, leading to denial of service.
Affected
30 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sap | netweaver | — | — |
| sap | netweaver | — | — |
| sap | netweaver | — | — |
| sap | netweaver | — | — |
| sap | netweaver | — | — |
| sap | netweaver | — | — |
| sap | netweaver | — | — |
| sap | netweaver | — | — |
| sap | netweaver | — | — |
| sap | netweaver | — | — |
| sap | web_dispatcher | — | — |
| sap | web_dispatcher | — | — |
| sap | web_dispatcher | — | — |
| sap | web_dispatcher | — | — |
| sap | web_dispatcher | — | — |
| sap_se | sap_netweaver | — | — |
| sap_se | sap_netweaver | — | — |
| sap_se | sap_netweaver | — | — |
| sap_se | sap_netweaver | — | — |
| sap_se | sap_netweaver | — | — |
| sap_se | sap_netweaver | — | — |
| sap_se | sap_netweaver | — | — |
| sap_se | sap_netweaver | — | — |
| sap_se | sap_netweaver | — | — |
| sap_se | sap_netweaver | — | — |