Rewterz Threat Advisory – Multiple SAP NetWeaver Application Server ABAP and ABAP Platform Vulnerabilities
November 11, 2022Rewterz Threat Alert – An Emerging Heodo Malware – Active IOCs
November 11, 2022Rewterz Threat Advisory – Multiple SAP NetWeaver Application Server ABAP and ABAP Platform Vulnerabilities
November 11, 2022Rewterz Threat Alert – An Emerging Heodo Malware – Active IOCs
November 11, 2022Severity
High
Analysis Summary
CVE-2022-41203
SAP BusinessObjects BI Platform could allow a remote authenticated attacker to execute arbitrary code on the system, caused by an unsafe deserialization flaw. By sending specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system.
Impact
Code Execution
Indicators Of Compromise
CVE
- CVE-2022-41203
Affected Vendors
SAP
Affected Products
- SAP BusinessObjects BI Platform 4.2
- SAP BusinessObjects BI Platform 4.3
Remediation
Current SAP customers should refer to SAP Security Advisory for patch information, available from the SAP Web site (login required).