In SAP Host Agent (Windows) - versions 7.21, 7.22, an attacker who gains local membership to SAP_LocalAdmin could be able to replace executables with a malicious file that will be started under a privileged account. Note that by default all user members of SAP_LocaAdmin are denied the ability to logon locally by security policy so that this can only occur if the system has already been compromised.
References
Link | Resource |
---|---|
https://launchpad.support.sap.com/#/notes/3276120 | Permissions Required Vendor Advisory |
https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
13 Jan 2023, 17:59
Type | Values Removed | Values Added |
---|---|---|
First Time |
Sap host Agent
Microsoft windows Microsoft Sap |
|
References | (MISC) https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html - Vendor Advisory | |
References | (MISC) https://launchpad.support.sap.com/#/notes/3276120 - Permissions Required, Vendor Advisory | |
CPE | cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* cpe:2.3:a:sap:host_agent:7.22:*:*:*:*:*:*:* cpe:2.3:a:sap:host_agent:7.21:*:*:*:*:*:*:* |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.7 |
10 Jan 2023, 03:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-01-10 03:15
Updated : 2023-12-10 14:48
NVD link : CVE-2023-0012
Mitre link : CVE-2023-0012
CVE.ORG link : CVE-2023-0012
JSON object : View
Products Affected
microsoft
- windows
sap
- host_agent
CWE
CWE-284
Improper Access Control