CVE-2022-22536
CVE-2022-22536
In short
SAP NetWeaver and related products allow attackers to inject malicious data into legitimate user requests without authentication. This enables impersonating victims, poisoning web caches, or executing unauthorized functions, potentially compromising the entire system.
Technical detail
HTTP request smuggling vulnerability (CWE-444) affecting SAP NetWeaver ABAP/Java, ABAP Platform, Content Server 7.53, and Web Dispatcher. Unauthenticated attacker can prepend arbitrary data to victim requests via request concatenation, bypassing authentication and authorization controls. Impact includes confidentiality, integrity, and availability compromise through request forgery and cache poisoning.
Summary generated and translated by AI from the official description.
SAP NetWeaver Application Server ABAP, SAP NetWeaver Application Server Java, ABAP Platform, SAP Content Server 7.53 and SAP Web Dispatcher are vulnerable for request smuggling and request concatenation. An unauthenticated attacker can prepend a victim's request with arbitrary data. This way, the attacker can execute functions impersonating the victim or poison intermediary Web caches. A successful attack could result in complete compromise of Confidentiality, Integrity and Availability of the system.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
SAP SE · SAP Content ServerSAP SE · SAP NetWeaver and ABAP PlatformSAP SE · SAP Web Dispatcherpublic PoCs found — 5
githubgithub.com/ZZ-SOCMAP/CVE-2022-22536★ 51githubgithub.com/tess-ss/SAP-memory-pipes-desynchronization-vulnerability-MPI-CVE-2022-22536★ 10githubgithub.com/BecodoExploit-mrCAT/SAPGateBreaker-Exploit★ 1githubgithub.com/abrewer251/CVE-2022-22536_SAP_Request_Smuggling_Scanner★ 0exploitdbwww.exploit-db.com/exploits/52109unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →