Risk Scores
CVSS v4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
EPSS Score
2.07%
83.8th percentile
Timeline
- Feb 9, 2022 CVE Published
- Feb 10, 2022 EPSS Score
- Apr 3, 2022 EPSS Score
- Apr 7, 2022 PoC Published
- Jul 16, 2022 EPSS Score
- Sep 6, 2022 EPSS Score
- Oct 28, 2022 EPSS Score
- Dec 19, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 1, 2023 EPSS Score
- May 23, 2023 EPSS Score
- Jul 14, 2023 EPSS Score
References
- https://dyn.cncs.gov.pt/pt/alerta-detalhe/art/135625/alerta-de-vulnerabilidades-sap-internet-communication-manager-icm advisory
- https://wiki.scn.sap.com/wiki/display/PSR/SAP+Security+Patch+Day+-+February+2022 technical
- https://onapsis.com/icmad-sap-cybersecurity-vulnerabilities?utm_campaign=2022-Q1-global-ICM-campaign-page&utm_medium=website&utm_source=third-party&utm_content=CISA-alert#download technical
- https://github.com/Onapsis/onapsis_icmad_scanner technical
- https://www.cisa.gov/uscert/ncas/current-activity/2022/02/08/critical-vulnerabilities-affecting-sap-applications-employing advisory