CVE-2023-41369

The Create Single Payment application of SAP S/4HANA - versions 100, 101, 102, 103, 104, 105, 106, 107, 108, allows an attacker to upload the XML file as an attachment. When clicked on the XML file in the attachment section, the file gets opened in the browser to cause the entity loops to slow down the browser.

CVSS v3 4.3 MEDIUM

4.3^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 2.8 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact LOW

Scope UNCHANGED

References

Link	Resource
https://me.sap.com/notes/3369680	Permissions Required
https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:sap:s\/4_hana:100:::::::*
	cpe:2.3:a:sap:s\/4_hana:101:::::::*
	cpe:2.3:a:sap:s\/4_hana:102:::::::*
	cpe:2.3:a:sap:s\/4_hana:103:::::::*
	cpe:2.3:a:sap:s\/4_hana:104:::::::*
	cpe:2.3:a:sap:s\/4_hana:105:::::::*
	cpe:2.3:a:sap:s\/4_hana:106:::::::*
	cpe:2.3:a:sap:s\/4_hana:107:::::::*
	cpe:2.3:a:sap:s\/4_hana:108:::::::*

History

14 Sep 2023, 02:11

Type	Values Removed	Values Added
References	~~(MISC) https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html -~~	(MISC) https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html - Vendor Advisory
References	~~(MISC) https://me.sap.com/notes/3369680 -~~	(MISC) https://me.sap.com/notes/3369680 - Permissions Required
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 4.3
First Time		Sap s\/4 Hana Sap
CPE		cpe:2.3:a:sap:s\/4_hana:102:::::::* cpe:2.3:a:sap:s\/4_hana:108:::::::* cpe:2.3:a:sap:s\/4_hana:107:::::::* cpe:2.3:a:sap:s\/4_hana:104:::::::* cpe:2.3:a:sap:s\/4_hana:100:::::::* cpe:2.3:a:sap:s\/4_hana:106:::::::* cpe:2.3:a:sap:s\/4_hana:101:::::::* cpe:2.3:a:sap:s\/4_hana:105:::::::* cpe:2.3:a:sap:s\/4_hana:103:::::::*

12 Sep 2023, 11:52

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-09-12 02:15

Updated : 2023-12-10 15:14

NVD link : CVE-2023-41369

Mitre link : CVE-2023-41369

CVE.ORG link : CVE-2023-41369

JSON object : View

Products Affected

sap

s\/4_hana

CWE

CWE-611

Improper Restriction of XML External Entity Reference

{"id": "CVE-2023-41369", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", "integrityImpact": "NONE", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 2.8}, {"type": "Secondary", "source": "cna@sap.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 3.5, "attackVector": "NETWORK", "baseSeverity": "LOW", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L", "integrityImpact": "NONE", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 2.1}]}, "published": "2023-09-12T02:15:12.983", "references": [{"url": "https://me.sap.com/notes/3369680", "tags": ["Permissions Required"], "source": "cna@sap.com"}, {"url": "https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html", "tags": ["Vendor Advisory"], "source": "cna@sap.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "cna@sap.com", "description": [{"lang": "en", "value": "CWE-611"}]}], "descriptions": [{"lang": "en", "value": "The Create Single Payment application of SAP S/4HANA\u00a0- versions 100, 101, 102, 103, 104, 105, 106, 107, 108, allows an attacker to upload the XML file as an attachment.\u00a0When clicked on the XML file in the attachment section, the file gets opened in the browser to cause the\u00a0entity loops to slow down the browser.\n\n"}, {"lang": "es", "value": "La aplicaci\u00f3n Create Single Payment de SAP S/4HANA - versiones 100, 101, 102, 103, 104, 105, 106, 107, 108, permite a un atacante cargar el archivo XML como datos adjuntos. Cuando se hace clic en el archivo XML en la secci\u00f3n de datos adjuntos, el archivo se abre en el navegador para hacer que los bucles de entidad ralenticen el navegador."}], "lastModified": "2023-09-14T02:11:35.203", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:sap:s\\/4_hana:100:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D978AA69-72A7-4A7E-B3A1-8D342B4B77CE"}, {"criteria": "cpe:2.3:a:sap:s\\/4_hana:101:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7A800EB9-BD11-46B8-9866-31088F01D433"}, {"criteria": "cpe:2.3:a:sap:s\\/4_hana:102:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7EE80980-12A5-40D7-8992-5C81FC82935E"}, {"criteria": "cpe:2.3:a:sap:s\\/4_hana:103:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "82AAE66A-7112-4E83-9094-2AA571144F64"}, {"criteria": "cpe:2.3:a:sap:s\\/4_hana:104:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CFF0FD31-F4F3-470A-9CB5-DE339D7334FF"}, {"criteria": "cpe:2.3:a:sap:s\\/4_hana:105:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A52E5AE7-D16E-4122-A39E-20A2CAB9A146"}, {"criteria": "cpe:2.3:a:sap:s\\/4_hana:106:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EAEF60F9-E053-4D22-AA65-9C1CA5130374"}, {"criteria": "cpe:2.3:a:sap:s\\/4_hana:107:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8606117E-F864-474F-8839-F6BAB51113E0"}, {"criteria": "cpe:2.3:a:sap:s\\/4_hana:108:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F794CB63-BF34-42D5-9998-CD2F2B2FF25F"}], "operator": "OR"}]}], "sourceIdentifier": "cna@sap.com"}