What is the severity of CVE-2023-49058?

The severity of CVE-2023-49058 is classified as low.

How do I fix CVE-2023-49058?

To fix CVE-2023-49058, users should apply the latest patches provided by SAP for the affected versions.

Which versions of SAP Master Data Governance are affected by CVE-2023-49058?

CVE-2023-49058 affects SAP Master Data Governance versions 731, 732, 746, 747, 748, 749, 751, 752, 800, 801, 802, 803, 804, 805, 806, and 807.

What type of vulnerability is CVE-2023-49058?

CVE-2023-49058 is a file upload vulnerability related to insufficient validation of path information.

Can CVE-2023-49058 lead to unauthorized access?

Yes, CVE-2023-49058 can potentially allow an attacker to gain unauthorized access to the system by exploiting path traversal techniques.

Vulnerability/
CVE-2023-49058

medium

5.3

CWE

12/12/2023

2/8/2024

CVE-2023-49058: Directory Traversal vulnerability in SAP Master Data Governance

First published: Tue Dec 12 2023(Updated: )

SAP Master Data Governance File Upload application allows an attacker to exploit insufficient validation of path information provided by users, thus characters representing ‘traverse to parent directory’ are passed through to the file APIs. As a result, it has a low impact to the confidentiality.

Credit: cna@sap.com

Affected Software	Affected Version	How to fix
SAP Master Data Governance	=731
SAP Master Data Governance	=732
SAP Master Data Governance	=746
SAP Master Data Governance	=747
SAP Master Data Governance	=748
SAP Master Data Governance	=749
SAP Master Data Governance	=751
SAP Master Data Governance	=752
SAP Master Data Governance	=800
SAP Master Data Governance	=801
SAP Master Data Governance	=802
SAP Master Data Governance	=803
SAP Master Data Governance	=804
SAP Master Data Governance	=805
SAP Master Data Governance	=806
SAP Master Data Governance	=807
SAP Master Data Governance	=808

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2023-49058?
The severity of CVE-2023-49058 is classified as low.
How do I fix CVE-2023-49058?
To fix CVE-2023-49058, users should apply the latest patches provided by SAP for the affected versions.
Which versions of SAP Master Data Governance are affected by CVE-2023-49058?
CVE-2023-49058 affects SAP Master Data Governance versions 731, 732, 746, 747, 748, 749, 751, 752, 800, 801, 802, 803, 804, 805, 806, and 807.
What type of vulnerability is CVE-2023-49058?
CVE-2023-49058 is a file upload vulnerability related to insufficient validation of path information.
Can CVE-2023-49058 lead to unauthorized access?
Yes, CVE-2023-49058 can potentially allow an attacker to gain unauthorized access to the system by exploiting path traversal techniques.

collector/nvd-api
agent/references
agent/type
agent/event
agent/first-publish-date
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/author
agent/last-modified-date
agent/severity
agent/tags
agent/description
agent/title
agent/weakness
agent/source
vendor/sap
canonical/sap master data governance
version/sap master data governance/731
version/sap master data governance/732
version/sap master data governance/746
version/sap master data governance/747
version/sap master data governance/748
version/sap master data governance/749
version/sap master data governance/751
version/sap master data governance/752
version/sap master data governance/800
version/sap master data governance/801
version/sap master data governance/802
version/sap master data governance/803
version/sap master data governance/804
version/sap master data governance/805
version/sap master data governance/806
version/sap master data governance/807
version/sap master data governance/808

Frequently Asked Questions

What is the severity of CVE-2023-49058?
The severity of CVE-2023-49058 is classified as low.
How do I fix CVE-2023-49058?
To fix CVE-2023-49058, users should apply the latest patches provided by SAP for the affected versions.
Which versions of SAP Master Data Governance are affected by CVE-2023-49058?
CVE-2023-49058 affects SAP Master Data Governance versions 731, 732, 746, 747, 748, 749, 751, 752, 800, 801, 802, 803, 804, 805, 806, and 807.
What type of vulnerability is CVE-2023-49058?
CVE-2023-49058 is a file upload vulnerability related to insufficient validation of path information.
Can CVE-2023-49058 lead to unauthorized access?
Yes, CVE-2023-49058 can potentially allow an attacker to gain unauthorized access to the system by exploiting path traversal techniques.

CVE-2023-49058: Directory Traversal vulnerability in SAP Master Data Governance

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2023-49058?

How do I fix CVE-2023-49058?

Which versions of SAP Master Data Governance are affected by CVE-2023-49058?

What type of vulnerability is CVE-2023-49058?

Can CVE-2023-49058 lead to unauthorized access?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2023-49058?

How do I fix CVE-2023-49058?

Which versions of SAP Master Data Governance are affected by CVE-2023-49058?

What type of vulnerability is CVE-2023-49058?

Can CVE-2023-49058 lead to unauthorized access?