SAP Security Advisory version KERNEL 7.85 - SAP Security Notes

 

Advisories for KERNEL 7.85

Below you can find all Security Advisories that related to your search term.

Note Component Description CVSS Severity Patchday Initially released on Category Affected system type Valid for
3218177 BC-FES-WGU [CVE-2022-35294] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Application Server ABAP 5.4 Medium 2022-09 2022/09/13 Program error ABAP KERNEL 7.22 KERNEL 7.49 KERNEL 7.53 KERNEL 7.54 KERNEL 7.77 KERNEL 7.81 KERNEL 7.85 KERNEL 7.89 KRNL64NUC 7.22 KRNL64NUC 7.22EXT KRNL64NUC 7.49 KRNL64UC 7.22 KRNL64UC 7.22EXT KRNL64UC 7.49 KRNL64UC 7.53
3123396 BC-CST-IC [CVE-2022-22536] Request smuggling and request concatenation in SAP NetWeaver, SAP Content Server and SAP Web Dispatcher 10.0 Hot News 2022-02 2022/02/08 Program error Kernel CONTSERV 7.53 KERNEL 7.22 KERNEL 7.49 KERNEL 7.53 KERNEL 7.77 KERNEL 7.81 KERNEL 7.85 KERNEL 7.86 KERNEL 7.87 KERNEL 8.04 KRNL64NUC 7.22 KRNL64NUC 7.22EXT KRNL64NUC 7.49 KRNL64UC 7.22 KRNL64UC 7.22EXT KRNL64UC 7.49 KRNL64UC 7.53 KRNL64UC 8.04 WEBDISP 7.22_EXT WEBDISP 7.49 WEBDISP 7.53 WEBDISP 7.77 WEBDISP 7.81 WEBDISP 7.85 WEBDISP 7.86 WEBDISP 7.87
3111311 BC-CST-WDP [CVE-2022-28772]Denial of service (DOS) in SAP Web Dispatcher and SAP Netweaver (Internet Communication Manager) 7.5 High 2022-04 2022/04/12 Program error Kernel KERNEL 7.53 KERNEL 7.77 KERNEL 7.81 KERNEL 7.85 KERNEL 7.86 KRNL64UC 7.53 SAP_EXTENDED_APP_SERVICES 1 WEBDISP 7.53 WEBDISP 7.77 WEBDISP 7.81 WEBDISP 7.85 WEBDISP 7.86 XS_ADVANCED_RUNTIME 1.00
3145046 BC-CST-WDP [CVE-2022-27656] Cross-Site Scripting (XSS) vulnerability in administration UI of SAP Webdispatcher and SAP Netweaver AS for ABAP and Java (ICM) 8.3 High 2022-05 2022/05/10 Program error Kernel KERNEL 7.22 KERNEL 7.49 KERNEL 7.53 KERNEL 7.77 KERNEL 7.81 KERNEL 7.85 KERNEL 7.86 KERNEL 7.87 KERNEL 8.04 KRNL64NUC 7.22 KRNL64NUC 7.22EXT KRNL64NUC 7.49 KRNL64UC 7.22 KRNL64UC 7.22EXT KRNL64UC 7.49 KRNL64UC 7.53 KRNL64UC 8.04 WEBDISP 7.22_EXT WEBDISP 7.49 WEBDISP 7.53 WEBDISP 7.77 WEBDISP 7.81 WEBDISP 7.85
3116223 BC-CST [CVE-2022-22543] Denial of service (DOS) in SAP NetWeaver Application Server for ABAP (Kernel) and ABAP Platform (Kernel) 3.7 Low 2022-02 2022/02/08 Program error Kernel KERNEL 7.22 KERNEL 7.49 KERNEL 7.53 KERNEL 7.77 KERNEL 7.81 KERNEL 7.85 KERNEL 7.86 KERNEL 7.87 KERNEL 8.04 KRNL64NUC 7.22 KRNL64NUC 7.22EXT KRNL64NUC 7.49 KRNL64UC 7.22 KRNL64UC 7.22EXT KRNL64UC 7.49 KRNL64UC 7.53 KRNL64UC 8.04
3194674 BC-CST-STS [CVE-2022-29612] Server-Side Request Forgery in SAP NetWeaver, ABAP Platform and SAP Host Agent 5.0 Medium 2022-06 2022/06/14 Program error ABAP SAP Host Agent KERNEL 7.22 KERNEL 7.49 KERNEL 7.53 KERNEL 7.77 KERNEL 7.81 KERNEL 7.85 KERNEL 7.86 KERNEL 7.87 KERNEL 7.88 KERNEL 8.04 KRNL64NUC 7.22 KRNL64NUC 7.22EXT KRNL64NUC 7.49 KRNL64UC 7.22 KRNL64UC 7.22EXT KRNL64UC 7.49 KRNL64UC 7.53 KRNL64UC 8.04 SAPHOSTAGENT 7.22
3158619 BC-CST-STS [CVE-2022-29614] Privilege Escalation in SAP startservice of SAP NetWeaver AS ABAP, AS Java, ABAP Platform and HANA Database 4.9 Medium 2022-06 2022/06/14 Program error ABAP Java HANA platform KERNEL 7.22 KERNEL 7.49 KERNEL 7.53 KERNEL 7.77 KERNEL 7.81 KERNEL 7.85 KERNEL 7.86 KERNEL 7.87 KERNEL 7.88 KRNL64NUC 7.22 KRNL64NUC 7.22EXT KRNL64NUC 7.49 KRNL64UC 7.22 KRNL64UC 7.22EXT KRNL64UC 7.49 KRNL64UC 7.53 SAPHOSTAGENT 7.22
3315312 BC-CST-IC [CVE-2023-29108] IP filter vulnerability in ABAP Platform and SAP Web Dispatcher 5.0 Medium 2023-04 2023/04/11 Consulting Kernel KERNEL 7.85 KERNEL 7.89 KERNEL 7.91 WEBDISP 7.85 WEBDISP 7.89
3158375 BC-CST-NI [CVE-2022-27668] Improper Access Control of SAProuter for SAP NetWeaver and ABAP Platform 8.6 High 2022-06 2022/06/14 Program error SAProuter KERNEL 7.49 KERNEL 7.77 KERNEL 7.81 KERNEL 7.85 KERNEL 7.86 KERNEL 7.87 KERNEL 7.88 KRNL64NUC 7.49 KRNL64UC 7.49 SAP_ROUTER 7.22 SAP_ROUTER 7.53
3275458 BC-FES-WGU [CVE-2023-27499] Cross-Site Scripting (XSS) vulnerability in SAP GUI for HTML 6.1 Medium 2023-04 2023/04/11 Program error Kernel KERNEL 7.22 KERNEL 7.53 KERNEL 7.54 KERNEL 7.77 KERNEL 7.81 KERNEL 7.85 KERNEL 7.89 KERNEL 7.91 KRNL64NUC 7.22 KRNL64NUC 7.22EXT KRNL64UC 7.22 KRNL64UC 7.22EXT KRNL64UC 7.53
3089413 BC-MID-RFC [CVE-2023-0014] Capture-replay vulnerability in SAP NetWeaver AS for ABAP and ABAP Platform 9.0 Hot News 2023-01 2023/01/10 Program error Kernel / ABAP KERNEL 7.22 KERNEL 7.53 KERNEL 7.77 KERNEL 7.81 KERNEL 7.85 KERNEL 7.89 KRNL64NUC 7.22 KRNL64NUC 7.22EXT KRNL64UC 7.22 KRNL64UC 7.22EXT KRNL64UC 7.53 SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-757
3389917 BC-CST-IC [CVE-2023-44487] Denial of service (DOS) in SAP Web Dispatcher, SAP NetWeaver Application server ABAP, and ABAP Platform 7.5 High 2024-01 2024/01/09 Program error Kernel KRNL64UC 7.53 WEBDISP 7.53 WEBDISP 7.77 WEBDISP 7.85 WEBDISP 7.89 WEBDISP 7.54 WEBDISP 7.93 WEBDISP 7.94 WEBDISP 7.95 KERNEL 7.53 KERNEL 7.77 KERNEL 7.85 KERNEL 7.89 KERNEL 7.54 KERNEL 7.93 KERNEL 7.94 KERNEL 7.95
3229820 BC-FES-WGU [CVE-2022-39799] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS ABAP (SAP GUI for HTML within the Fiori Launchpad) 6.1 Medium 2022-09 2022/09/13 Program error ABAP KERNEL 7.54 KERNEL 7.77 KERNEL 7.81 KERNEL 7.85 KERNEL 7.89
3360827 BC-FES-ITS [CVE-2024-24740] Information Disclosure vulnerability in SAP NetWeaver Application Server ABAP (SAP Kernel) 5.3 Medium 2024-02 2024/02/13 Program error Kernel KERNEL 7.53 KERNEL 7.54 KERNEL 7.77 KERNEL 7.85 KERNEL 7.89 KERNEL 7.93 KERNEL 7.94 KRNL64UC 7.53
3145702 BC-CST-MS [CVE-2022-29616] Memory Corruption vulnerability in SAP Host Agent, SAP NetWeaver and ABAP Platform 5.3 Medium 2022-05 2022/05/10 Program error SAP Host Agent Kernel KERNEL 7.22 KERNEL 7.49 KERNEL 7.53 KERNEL 7.77 KERNEL 7.81 KERNEL 7.85 KERNEL 7.86 KERNEL 7.87 KERNEL 7.88 KERNEL 8.04 KRNL64NUC 7.22 KRNL64NUC 7.22EXT KRNL64NUC 7.49 KRNL64UC 7.22 KRNL64UC 7.22EXT KRNL64UC 7.49 KRNL64UC 7.53 KRNL64UC 8.04 SAPHOSTAGENT 7.22
3318850 BC-MID-RFC [CVE-2023-35874] Improper authentication vulnerability in SAP NetWeaver AS ABAP and ABAP Platform 6.0 Medium 2023-07 2023/07/11 Program error Kernel KERNEL 7.22 KERNEL 7.53 KERNEL 7.54 KERNEL 7.77 KERNEL 7.81 KERNEL 7.85 KERNEL 7.89 KERNEL 7.92 KERNEL 7.93 KRNL64NUC 7.22 KRNL64NUC 7.22EXT KRNL64UC 7.22 KRNL64UC 7.22EXT KRNL64UC 7.53
3111293 BC-CST-WDP [CVE-2022-28773] Denial of service (DOS) in SAP Web Dispatcher and SAP Netweaver (Internet Communication Manager) 4.9 Medium 2022-04 2022/04/12 Program error Kernel HDB 2.00 KERNEL 7.22 KERNEL 7.49 KERNEL 7.53 KERNEL 7.77 KERNEL 7.81 KERNEL 7.85 KERNEL 7.86 KRNL64NUC 7.22 KRNL64NUC 7.22EXT KRNL64NUC 7.49 KRNL64UC 7.22 KRNL64UC 7.22EXT KRNL64UC 7.49 KRNL64UC 7.53 WEBDISP 7.53 WEBDISP 7.77 WEBDISP 7.81 WEBDISP 7.85 WEBDISP 7.86
3233899 BC-CST-WDP [CVE-2023-33987] Request smuggling and request concatenation vulnerability in SAP Web Dispatcher 8.6 High 2023-07 2023/07/11 Program error Kernel HDB 2.00 KERNEL 7.49 KERNEL 7.53 KERNEL 7.54 KERNEL 7.77 KERNEL 7.81 KERNEL 7.85 KERNEL 7.88 KERNEL 7.89 KERNEL 7.90 KRNL64NUC 7.49 KRNL64UC 7.49 KRNL64UC 7.53 SAP_EXTENDED_APP_SERVICES 1 WEBDISP 7.49 WEBDISP 7.53 WEBDISP 7.54 WEBDISP 7.77 WEBDISP 7.81 WEBDISP 7.85 WEBDISP 7.88 WEBDISP 7.89 WEBDISP 7.90 XS_ADVANCED_RUNTIME 1.00
3340735 BC-CST-WDP [CVE-2023-35871] Memory Corruption vulnerability in SAP Web Dispatcher 7.7 High 2023-07 2023/07/11 Program error Kernel HDB 2.00 KERNEL 7.53 KERNEL 7.54 KERNEL 7.77 KERNEL 7.85 KERNEL 7.89 KERNEL 7.91 KERNEL 7.92 KERNEL 7.93 KRNL64UC 7.53 SAP_EXTENDED_APP_SERVICES 1 WEBDISP 7.53 WEBDISP 7.54 WEBDISP 7.77 WEBDISP 7.85 WEBDISP 7.89 WEBDISP 7.91 WEBDISP 7.92 WEBDISP 7.93 XS_ADVANCED_RUNTIME 1.00
3340576 BC-IAM-SSO-CCL [CVE-2023-40309] Missing Authorization check in SAP CommonCryptoLib 9.8 Hot News 2023-09 2023/09/12 Program error Kernel, HANA platform, Web Dispatcher CONTSERV 6.50 CONTSERV 7.53 CONTSERV 7.54 CRYPTOLIB 8 HDB 2.00 KERNEL 7.22 KERNEL 7.53 KERNEL 7.54 KERNEL 7.77 KERNEL 7.85 KERNEL 7.89 KERNEL 7.91 KERNEL 7.92 KERNEL 7.93 KERNEL 8.04 KRNL64NUC 7.22 KRNL64NUC 7.22EXT KRNL64UC 7.22 KRNL64UC 7.22EXT KRNL64UC 7.53 KRNL64UC 8.04 SAPHOSTAGENT 7.22 SAPSSOEXT 17 SAP_EXTENDED_APP_SERVICES 1 WEBDISP 7.22_EXT WEBDISP 7.53 WEBDISP 7.54 WEBDISP 7.77 WEBDISP 7.85 WEBDISP 7.89 XS_ADVANCED_RUNTIME 1.00
3327896 BC-IAM-SSO-CCL [CVE-2023-40308] Memory Corruption vulnerability in SAP CommonCryptoLib 7.5 High 2023-09 2023/09/12 Program error Kernel CONTSERV 6.50 CONTSERV 7.53 CONTSERV 7.54 CRYPTOLIB 8 HDB 2.00 KERNEL 7.22 KERNEL 7.53 KERNEL 7.54 KERNEL 7.77 KERNEL 7.85 KERNEL 7.89 KERNEL 7.91 KERNEL 7.92 KERNEL 7.93 KERNEL 8.04 KRNL64NUC 7.22 KRNL64NUC 7.22EXT KRNL64UC 7.22 KRNL64UC 7.22EXT KRNL64UC 7.53 KRNL64UC 8.04 SAPHOSTAGENT 7.22 SAPSSOEXT 17 SAP_EXTENDED_APP_SERVICES 1 WEBDISP 7.22_EXT WEBDISP 7.53 WEBDISP 7.54 WEBDISP 7.77 WEBDISP 7.85 WEBDISP 7.89 XS_ADVANCED_RUNTIME 1.00
3099776 BC-MID-RFC [CVE-2021-40501] Missing Authorization check in ABAP Platform Kernel 9.6 Hot News 2021-11 2021/11/09 Program error Kernel KERNEL 7.77 KERNEL 7.81 KERNEL 7.85 KERNEL 7.86
ABEX logo

SecurityBridge helps in prioritizing SAP patches, updates and the remediation strategies essential for preventing the disruption of vital business systems. We help businesses in making their SAP systems more secure.

SecurityBridge
Platform
Product

© Copyright 2024 by SecurityBridge GmbH

v34.3