CVE-2023-33992

The SAP BW BICS communication layer in SAP Business Warehouse and SAP BW/4HANA - version SAP_BW 730, SAP_BW 731, SAP_BW 740, SAP_BW 730, SAP_BW 750, DW4CORE 100, DW4CORE 200, DW4CORE 300, may expose unauthorized cell values to the data response. To be able to exploit this, the user still needs authorizations on the query as well as on the keyfigure/measure level. The missing check only affects the data level.

CVSS v3 6.5 MEDIUM

6.5^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 2.8 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://me.sap.com/notes/3088078	Permissions Required
https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:sap:business_warehouse:730:::::::*
	cpe:2.3:a:sap:business_warehouse:731:::::::*
	cpe:2.3:a:sap:business_warehouse:740:::::::*
	cpe:2.3:a:sap:business_warehouse:750:::::::*
	cpe:2.3:a:sap:bw\/4hana:100:::::::*
	cpe:2.3:a:sap:bw\/4hana:200:::::::*
	cpe:2.3:a:sap:bw\/4hana:300:::::::*

History

No history.

Information

Published : 2023-07-11 03:15

Updated : 2023-07-19 13:24

NVD link : CVE-2023-33992

Mitre link : CVE-2023-33992

CVE.ORG link : CVE-2023-33992

JSON object : View

Products Affected

sap

business_warehouse
bw\/4hana

CWE

CWE-862

Missing Authorization

{"id": "CVE-2023-33992", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 2.8}, {"type": "Secondary", "source": "cna@sap.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 0.9}]}, "published": "2023-07-11T03:15:09.717", "references": [{"url": "https://me.sap.com/notes/3088078", "tags": ["Permissions Required"], "source": "cna@sap.com"}, {"url": "https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html", "tags": ["Vendor Advisory"], "source": "cna@sap.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "cna@sap.com", "description": [{"lang": "en", "value": "CWE-862"}]}], "descriptions": [{"lang": "en", "value": "The SAP BW BICS communication layer in SAP Business Warehouse and SAP BW/4HANA - version SAP_BW 730, SAP_BW 731, SAP_BW 740, SAP_BW 730, SAP_BW 750, DW4CORE 100, DW4CORE 200, DW4CORE 300, may expose unauthorized cell values to the data response. To be able to exploit this, the user still needs authorizations on the query as well as on the keyfigure/measure level. The missing check only affects the data level.\n\n"}], "lastModified": "2023-07-19T13:24:24.817", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:sap:business_warehouse:730:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EF8F2CE3-BA4B-4A9C-A284-87F0AB797B92"}, {"criteria": "cpe:2.3:a:sap:business_warehouse:731:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "00732AD2-BEED-4C1F-AC39-46E6F33CBB5E"}, {"criteria": "cpe:2.3:a:sap:business_warehouse:740:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EC7DABAD-36FA-49D7-8C3C-3AA49604BE37"}, {"criteria": "cpe:2.3:a:sap:business_warehouse:750:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "526C11C6-B67D-49F1-94E6-A324AA581EDD"}, {"criteria": "cpe:2.3:a:sap:bw\\/4hana:100:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BCD13072-E149-45FB-BD46-E3D48D81216B"}, {"criteria": "cpe:2.3:a:sap:bw\\/4hana:200:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "704134B4-A642-488F-94B3-48A744C46A1A"}, {"criteria": "cpe:2.3:a:sap:bw\\/4hana:300:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7CCF4C28-1C0B-43C3-A870-C30F53BCAA2B"}], "operator": "OR"}]}], "sourceIdentifier": "cna@sap.com"}