SAP NetWeaver Application Server Java Memory Buffer Consumption Vulnerability

SAP NetWeaver Application Server Java Memory Buffer Consumption Vulnerability

CVE-2022-22533 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Due to improper error handling in SAP NetWeaver Application Server Java - versions KRNL64NUC 7.22, 7.22EXT, 7.49, KRNL64UC, 7.22, 7.22EXT, 7.49, 7.53, KERNEL 7.22, 7.49, 7.53, an attacker could submit multiple HTTP server requests resulting in errors, such that it consumes the memory buffer. This could result in system shutdown rendering the system unavailable.

Learn more about our Cis Benchmark Audit For Server Software.