Description
A highly privileged user can exploit SUID-root program to escalate his privileges to root on a local Unix system.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_misc
https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html
Permissions Required, Vendor Advisory x_refsource_misc
https://launchpad.support.sap.com/#/notes/3155571
Scores
CVSS v3
6.7
EPSS
0.0004
EPSS Percentile
10.8%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-269
Status
published
Products (11)
sap/adaptive_server_enterprise
16.0
sap/adaptive_server_enterprise
kernel_7.22
sap/adaptive_server_enterprise
kernel_7.49
sap/adaptive_server_enterprise
kernel_7.53
sap/adaptive_server_enterprise
krnl64nuc_7.22
sap/adaptive_server_enterprise
krnl64nuc_7.22ext
sap/adaptive_server_enterprise
krnl64nuc_7.49
sap/adaptive_server_enterprise
krnl64uc_7.22
sap/adaptive_server_enterprise
krnl64uc_7.22ext
sap/adaptive_server_enterprise
krnl64uc_7.49
... and 1 more
Published
Jun 14, 2022
Tracked Since
Feb 18, 2026