CVE-2022-31594

Name of the Vulnerable Software and Affected Versions SAP Adaptive Server Enterprise (affected versions not specified) SUID-root program (affected versions not specified)

Description The issue is related to a highly privileged user exploiting a SUID-root program to escalate privileges to root on a local Unix system. It is also associated with insufficient access control in the SAP Adaptive Server Enterprise database, which can allow an attacker to elevate their privileges.

Recommendations For SAP Adaptive Server Enterprise, restrict access to sensitive areas of the database to minimize the risk of exploitation. For SUID-root program, consider disabling the program until a patch is available to prevent local privilege escalation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.