VDB

CVE-2022-31592

CVE-2022-31592 PUBLISHED CVSS 4.300000190734863 MEDIUM

The application SAP Enterprise Extension Defense Forces & Public Security - versions 605, 606, 616,617,618, 802, 803, 804, 805, 806, does not perform necessary authorization checks for an authenticated user over the network, resulting in escalation of privileges leading to a limited impact on confidentiality.

EPSS 0.15% · 35.1th percentile

Risk Scores

CVSS v3.1
4.300000190734863
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
EPSS Score
0.15%
35.1th percentile

Affected Products

VendorProductVersions
SAP SESAP Enterprise Extension Defense Forces & Public Security (EA-DFPS)605, 606, 617
sapenterprise_extension_defense_forces_\&_public_security605, 606, 616

Timeline

  • Jul 12, 2022 CVE Published
  • Jul 13, 2022 EPSS Score
  • Aug 30, 2022 EPSS Score
  • Oct 16, 2022 EPSS Score
  • Dec 2, 2022 EPSS Score
  • Jan 18, 2023 EPSS Score
  • Mar 6, 2023 EPSS Score
  • Mar 7, 2023 EPSS Score
  • Apr 22, 2023 EPSS Score
  • Jun 8, 2023 EPSS Score
  • Jul 25, 2023 EPSS Score
  • Sep 10, 2023 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›