CVE-2022-32248: Input Validation
First published: Tue Jul 12 2022(Updated: )
Due to missing input validation in the Manage Checkbooks component of SAP S/4HANA - version 101, 102, 103, 104, 105, 106, an attacker could insert or edit the value of an existing field in the database. This leads to an impact on the integrity of the data.
Credit: cna@sap.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Sap S\/4hana | =101 | |
| Sap S\/4hana | =102 | |
| Sap S\/4hana | =103 | |
| Sap S\/4hana | =104 | |
| Sap S\/4hana | =105 | |
| Sap S\/4hana | =106 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2022-32248?
CVE-2022-32248 has a severity rating that can impact the integrity of data in SAP S/4HANA.
How do I fix CVE-2022-32248?
To fix CVE-2022-32248, you should apply the latest security patches provided by SAP for affected versions of SAP S/4HANA.
Which versions of SAP S/4HANA are affected by CVE-2022-32248?
CVE-2022-32248 affects SAP S/4HANA versions 101, 102, 103, 104, 105, and 106.
What type of vulnerability is CVE-2022-32248?
CVE-2022-32248 is an input validation vulnerability in the Manage Checkbooks component of SAP S/4HANA.
What impact does CVE-2022-32248 have?
CVE-2022-32248 can lead to integrity issues where an attacker is able to insert or edit values in the database.
- collector/nvd-index
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/weakness
- agent/severity
- agent/author
- agent/tags
- agent/first-publish-date
- agent/description
- agent/event
- agent/source
- vendor/sap
- canonical/sap s\/4hana
- version/sap s\/4hana/101
- version/sap s\/4hana/102
- version/sap s\/4hana/103
- version/sap s\/4hana/104
- version/sap s\/4hana/105
- version/sap s\/4hana/106