← back
CVE-2022-22533

CVE-2022-22533

EPSS 1.7%CWE-416
Due to improper error handling in SAP NetWeaver Application Server Java - versions KRNL64NUC 7.22, 7.22EXT, 7.49, KRNL64UC, 7.22, 7.22EXT, 7.49, 7.53, KERNEL 7.22, 7.49, 7.53, an attacker could submit multiple HTTP server requests resulting in errors, such that it consumes the memory buffer. This could result in system shutdown rendering the system unavailable.
Affected products
SAP SE · SAP NetWeaver Application Server Java

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://launchpad.support.sap.com/#/notes/3123427https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html