CVE-2024-22132

Name of the Vulnerable Software and Affected Versions: SAP IDES ECC-systems (affected versions not specified)

Description: The issue allows the execution of arbitrary program code of a user's choice, potentially enabling an attacker to control the system's behavior by executing malicious code. This could escalate privileges, although with low impact on confidentiality, integrity, and availability of the system. The vulnerability exists due to the lack of measures to neutralize special elements used in the operating system command.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.