Vulnerability Details : CVE-2023-29189

SAP CRM (WebClient UI) - versions S4FND 102, 103, 104, 105, 106, 107, WEBCUIF, 700, 701, 731, 730, 746, 747, 748, 800, 801, allows an authenticated attacker to modify HTTP verbs used in requests to the web server. This application is exposed over the network and successful exploitation can lead to exposure of form fields

Vulnerability category: Directory traversal

Published 2023-04-11 04:16:09

Updated 2023-04-18 19:12:52

Source SAP SE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2023-29189

Probability of exploitation activity in the next 30 days: 0.05%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 12 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2023-29189

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Source
5.4	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N	2.8	2.5	[email protected]
Attack Vector: Network Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: Low Integrity: Low Availability: None
5.4	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N	2.8	2.5	[email protected]
Attack Vector: Network Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: Low Integrity: Low Availability: None

CWE ids for CVE-2023-29189

CWE-23 Relative Path Traversal

The product uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize sequences such as ".." that can resolve to a location that is outside of that directory.

Assigned by: [email protected] (Secondary)

References for CVE-2023-29189

https://launchpad.support.sap.com/#/notes/3269352

Permissions Required
https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html

Vendor Advisory

CVEs referencing this url

Products affected by CVE-2023-29189

SAP » Customer Relationship Management Webclient Ui » Version: 700
cpe:2.3:a:sap:customer_relationship_management_webclient_ui:700:*:*:*:*:*:*:*
Matching versions
SAP » Customer Relationship Management Webclient Ui » Version: 731
cpe:2.3:a:sap:customer_relationship_management_webclient_ui:731:*:*:*:*:*:*:*
Matching versions
SAP » Customer Relationship Management Webclient Ui » Version: 730
cpe:2.3:a:sap:customer_relationship_management_webclient_ui:730:*:*:*:*:*:*:*
Matching versions
SAP » Customer Relationship Management Webclient Ui » Version: 746
cpe:2.3:a:sap:customer_relationship_management_webclient_ui:746:*:*:*:*:*:*:*
Matching versions
SAP » Customer Relationship Management Webclient Ui » Version: 747
cpe:2.3:a:sap:customer_relationship_management_webclient_ui:747:*:*:*:*:*:*:*
Matching versions
SAP » Customer Relationship Management Webclient Ui » Version: 748
cpe:2.3:a:sap:customer_relationship_management_webclient_ui:748:*:*:*:*:*:*:*
Matching versions
SAP » Customer Relationship Management Webclient Ui » Version: 800
cpe:2.3:a:sap:customer_relationship_management_webclient_ui:800:*:*:*:*:*:*:*
Matching versions
SAP » Customer Relationship Management Webclient Ui » Version: 801
cpe:2.3:a:sap:customer_relationship_management_webclient_ui:801:*:*:*:*:*:*:*
Matching versions
SAP » Customer Relationship Management Webclient Ui » Version: 701
cpe:2.3:a:sap:customer_relationship_management_webclient_ui:701:*:*:*:*:*:*:*
Matching versions
SAP » Customer Relationship Management S4fnd » Version: 103
cpe:2.3:a:sap:customer_relationship_management_s4fnd:103:*:*:*:*:*:*:*
Matching versions
SAP » Customer Relationship Management S4fnd » Version: 104
cpe:2.3:a:sap:customer_relationship_management_s4fnd:104:*:*:*:*:*:*:*
Matching versions
SAP » Customer Relationship Management S4fnd » Version: 105
cpe:2.3:a:sap:customer_relationship_management_s4fnd:105:*:*:*:*:*:*:*
Matching versions
SAP » Customer Relationship Management S4fnd » Version: 102
cpe:2.3:a:sap:customer_relationship_management_s4fnd:102:*:*:*:*:*:*:*
Matching versions