Sap Host Agent Service vulnerabilities

CVE-2023-24523 [HIGH] CWE-668 CVE-2023-24523: An attacker authenticated as a non-admin user with local access to a server port assigned to the SAP An attacker authenticated as a non-admin user with local access to a server port assigned to the SAP Host Agent (Start Service) - versions 7.21, 7.22, can submit a crafted ConfigureOutsideDiscovery request with an operating system command which will be executed with administrator privileges. The OS command can read or modify any user or system data an