VDB
BDU%3A2023-08961
BDU%3A2023-08961
PUBLISHED
CVSS 9.399999618530273 CRITICAL
Уязвимость библиотеки cloud-security-services-integration-library платформы разработки, интеграции и расширения приложений в виртуальной среде SAP Business Technology Platform (BTP), позволяющая нарушителю повысить свои привилегии
Risk Scores
CVSS 2.0
9.399999618530273
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SAP | cloud-security-services-integration-library |
Timeline
- Dec 21, 2023 CVE Published
References
- https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html url
- https://www.cve.org/CVERecord?id=CVE-2023-50422 url
- https://blogs.sap.com/2023/12/12/unveiling-critical-security-updates-sap-btp-security-note-3411067/ url
- https://github.com/SAP/cloud-security-services-integration-library/ url
- https://github.com/SAP/cloud-security-services-integration-library/security/advisories/GHSA-59c9-pxq8-9c73 url
- https://mvnrepository.com/artifact/com.sap.cloud.security.xsuaa/spring-xsuaa url
- https://mvnrepository.com/artifact/com.sap.cloud.security/java-security url
- https://mvnrepository.com/artifact/com.sap.cloud.security/spring-security url