CVE-2023-35874

Name of the Vulnerable Software and Affected Versions SAP NetWeaver Application Server ABAP and ABAP Platform versions 7.22 through 7.93

Description The issue is related to improper authentication checks for functionalities that require user identity. This can allow an attacker to perform malicious actions over the network, potentially causing a limited impact on confidentiality, integrity, and availability.

Recommendations For SAP NetWeaver Application Server ABAP and ABAP Platform versions 7.22 through 7.93, consider implementing additional authentication measures to mitigate the risk of exploitation. As a temporary workaround, restrict access to functionalities that require user identity until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.