CVE Published: 09/08/2022 |
CVE Updated: 03/08/2024 |
CVE Year: 2022 Source: sap |
Vendor: SAP SE |
Product: SAP Enable Now Manager Status : PUBLISHED
CVE-2022-35293 Description
Due to insecure session management, SAP Enable Now allows an unauthenticated attacker to gain access to user\'s account. On successful exploitation, an attacker can view or modify user data causing limited impact on confidentiality and integrity of the application.