CVE-2022-27668
CRITICALSAP NetWeaver and ABAP Platform - Unauthenticated Remote Command Execution via SAProuter Administration Commands
Title source: llmDescription
Depending on the configuration of the route permission table in file 'saprouttab', it is possible for an unauthenticated attacker to execute SAProuter administration commands in SAP NetWeaver and ABAP Platform - versions KERNEL 7.49, 7.77, 7.81, 7.85, 7.86, 7.87, 7.88, KRNL64NUC 7.49, KRNL64UC 7.49, SAP_ROUTER 7.53, 7.22, from a remote client, for example stopping the SAProuter, that could highly impact systems availability.
References (4)
Core 4
Core References
Vendor Advisory x_refsource_misc
https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html
Permissions Required, Vendor Advisory x_refsource_misc
https://launchpad.support.sap.com/#/notes/3158375
Exploit, Mailing List, Third Party Advisory mailing-list
x_refsource_fulldisc
http://seclists.org/fulldisclosure/2022/Sep/17
Exploit, Third Party Advisory x_refsource_misc
http://packetstormsecurity.com/files/168406/SAP-SAProuter-Improper-Access-Control.html
Scores
CVSS v3
9.8
EPSS
0.0253
EPSS Percentile
85.6%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-863
Status
published
Products (11)
sap/netweaver_as_abap
kernel_7.49
sap/netweaver_as_abap
kernel_7.77
sap/netweaver_as_abap
kernel_7.81
sap/netweaver_as_abap
kernel_7.85
sap/netweaver_as_abap
kernel_7.86
sap/netweaver_as_abap
kernel_7.87
sap/netweaver_as_abap
kernel_7.88
sap/netweaver_as_abap_krnl64nuc
7.49
sap/netweaver_as_abap_krnl64uc
7.49
sap/router
7.22
... and 1 more
Published
Jun 14, 2022
Tracked Since
Feb 18, 2026