Description
Due to insecure session management, SAP Enable Now allows an unauthenticated attacker to gain access to user's account. On successful exploitation, an attacker can view or modify user data causing limited impact on confidentiality and integrity of the application.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2022-38183 | Due to insecure session management, SAP Enable Now allows an unauthenticated attacker to gain access to user's account. On successful exploitation, an attacker can view or modify user data causing limited impact on confidentiality and integrity of the application. |
References
History
Tue, 23 Jun 2026 15:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Status: PUBLISHED
Assigner: sap
Published:
Updated: 2026-06-23T14:35:37.150Z
Reserved: 2022-07-07T00:00:00.000Z
Link: CVE-2022-35293
Updated: 2024-08-03T09:36:43.334Z
Status : Modified
Published: 2022-08-10T20:15:53.800
Modified: 2026-06-17T04:51:44.257
Link: CVE-2022-35293
No data.
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-862
Missing Authorization
EUVD