cnvd - cnvd-2022-63619

CNVD-2022-63619

Vulnerability from cnvd - Published: 2022-09-15

Title

SAP Adaptive Server Enterprise权限提升漏洞

Description

SAP Adaptive Server Enterprise（ASE）是德国思爱普（SAP）公司的一款关系型数据库服务器。 SAP Adaptive Server Enterprise存在权限提升漏洞。该漏洞源于错误的程序对高级本地过程的调用。攻击者可利用该漏洞将自己的权限提升为本地Unix系统上的root权限。

Severity

高

Patch Name

SAP Adaptive Server Enterprise权限提升漏洞的补丁

Patch Description

Formal description

厂商已发布了漏洞修复程序，请及时关注更新： https://launchpad.support.sap.com/#/notes/3155571

Reference

https://nvd.nist.gov/vuln/detail/CVE-2022-31594

Impacted products

Name
['SAP Adaptive Server Enterprise 16.0', 'SAP SAP Adaptive Server Enterprise kernel 7.22', 'SAP SAP Adaptive Server Enterprise kernel 7.49', 'SAP SAP Adaptive Server Enterprise kernel 7.53', 'SAP SAP Adaptive Server Enterprise krnl64nuc 7.22', 'SAP SAP Adaptive Server Enterprise krnl64nuc 7.22ext', 'SAP SAP Adaptive Server Enterprise krnl64nuc 7.49', 'SAP SAP Adaptive Server Enterprise krnl64nuc 7.53']

Name

['SAP Adaptive Server Enterprise 16.0', 'SAP SAP Adaptive Server Enterprise kernel 7.22', 'SAP SAP Adaptive Server Enterprise kernel 7.49', 'SAP SAP Adaptive Server Enterprise kernel 7.53', 'SAP SAP Adaptive Server Enterprise krnl64nuc 7.22', 'SAP SAP Adaptive Server Enterprise krnl64nuc 7.22ext', 'SAP SAP Adaptive Server Enterprise krnl64nuc 7.49', 'SAP SAP Adaptive Server Enterprise krnl64nuc 7.53']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2022-31594",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2022-31594"
    }
  },
  "description": "SAP Adaptive Server Enterprise\uff08ASE\uff09\u662f\u5fb7\u56fd\u601d\u7231\u666e\uff08SAP\uff09\u516c\u53f8\u7684\u4e00\u6b3e\u5173\u7cfb\u578b\u6570\u636e\u5e93\u670d\u52a1\u5668\u3002\n\nSAP Adaptive Server Enterprise\u5b58\u5728\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\u3002\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u9519\u8bef\u7684\u7a0b\u5e8f\u5bf9\u9ad8\u7ea7\u672c\u5730\u8fc7\u7a0b\u7684\u8c03\u7528\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5c06\u81ea\u5df1\u7684\u6743\u9650\u63d0\u5347\u4e3a\u672c\u5730Unix\u7cfb\u7edf\u4e0a\u7684root\u6743\u9650\u3002",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://launchpad.support.sap.com/#/notes/3155571",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2022-63619",
  "openTime": "2022-09-15",
  "patchDescription": "SAP Adaptive Server Enterprise\uff08ASE\uff09\u662f\u5fb7\u56fd\u601d\u7231\u666e\uff08SAP\uff09\u516c\u53f8\u7684\u4e00\u6b3e\u5173\u7cfb\u578b\u6570\u636e\u5e93\u670d\u52a1\u5668\u3002\r\n\r\nSAP Adaptive Server Enterprise\u5b58\u5728\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\u3002\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u9519\u8bef\u7684\u7a0b\u5e8f\u5bf9\u9ad8\u7ea7\u672c\u5730\u8fc7\u7a0b\u7684\u8c03\u7528\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5c06\u81ea\u5df1\u7684\u6743\u9650\u63d0\u5347\u4e3a\u672c\u5730Unix\u7cfb\u7edf\u4e0a\u7684root\u6743\u9650\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "SAP Adaptive Server Enterprise\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "SAP Adaptive Server Enterprise 16.0",
      "SAP SAP Adaptive Server Enterprise kernel 7.22",
      "SAP SAP Adaptive Server Enterprise kernel 7.49",
      "SAP SAP Adaptive Server Enterprise kernel 7.53",
      "SAP SAP Adaptive Server Enterprise krnl64nuc 7.22",
      "SAP SAP Adaptive Server Enterprise krnl64nuc 7.22ext",
      "SAP SAP Adaptive Server Enterprise krnl64nuc 7.49",
      "SAP SAP Adaptive Server Enterprise krnl64nuc 7.53"
    ]
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2022-31594",
  "serverity": "\u9ad8",
  "submitTime": "2022-06-20",
  "title": "SAP Adaptive Server Enterprise\u6743\u9650\u63d0\u5347\u6f0f\u6d1e"
}

CVE-2022-31594 (GCVE-0-2022-31594)

Vulnerability from cvelistv5 – Published: 2022-06-14 18:44 – Updated: 2024-08-03 07:19

Summary

A highly privileged user can exploit SUID-root program to escalate his privileges to root on a local Unix system.

Severity ?

No CVSS data available.

CWE

CWE-269

Assigner

sap

References

URL

Tags

	https://www.sap.com/documents/2022/02/fa865ea4-16…	x_refsource_MISC
	https://launchpad.support.sap.com/#/notes/3155571	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	SAP SE	SAP Adaptive Server Enterprise (ASE)	Affected: KERNEL 7.22 Affected: 7.49 Affected: 7.53 Affected: KRNL64NUC 7.22 Affected: 7.22EXT Affected: KRNL64UC 7.22

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T07:19:06.843Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://launchpad.support.sap.com/#/notes/3155571"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "SAP Adaptive Server Enterprise (ASE)",
          "vendor": "SAP SE",
          "versions": [
            {
              "status": "affected",
              "version": "KERNEL 7.22"
            },
            {
              "status": "affected",
              "version": "7.49"
            },
            {
              "status": "affected",
              "version": "7.53"
            },
            {
              "status": "affected",
              "version": "KRNL64NUC 7.22"
            },
            {
              "status": "affected",
              "version": "7.22EXT"
            },
            {
              "status": "affected",
              "version": "KRNL64UC 7.22"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A highly privileged user can exploit SUID-root program to escalate his privileges to root on a local Unix system."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-269",
              "description": "CWE-269",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-06-14T18:44:35",
        "orgId": "e4686d1a-f260-4930-ac4c-2f5c992778dd",
        "shortName": "sap"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://launchpad.support.sap.com/#/notes/3155571"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cna@sap.com",
          "ID": "CVE-2022-31594",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "SAP Adaptive Server Enterprise (ASE)",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "=",
                            "version_value": "KERNEL 7.22"
                          },
                          {
                            "version_affected": "=",
                            "version_value": "7.49"
                          },
                          {
                            "version_affected": "=",
                            "version_value": "7.53"
                          },
                          {
                            "version_affected": "=",
                            "version_value": "KRNL64NUC 7.22"
                          },
                          {
                            "version_affected": "=",
                            "version_value": "7.22EXT"
                          },
                          {
                            "version_affected": "=",
                            "version_value": "7.49"
                          },
                          {
                            "version_affected": "=",
                            "version_value": "KRNL64UC 7.22"
                          },
                          {
                            "version_affected": "=",
                            "version_value": "7.22EXT"
                          },
                          {
                            "version_affected": "=",
                            "version_value": "7.49"
                          },
                          {
                            "version_affected": "=",
                            "version_value": "7.53"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "SAP SE"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A highly privileged user can exploit SUID-root program to escalate his privileges to root on a local Unix system."
            }
          ]
        },
        "impact": {
          "cvss": {
            "baseScore": "null",
            "vectorString": "null",
            "version": "3.0"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-269"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html",
              "refsource": "MISC",
              "url": "https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html"
            },
            {
              "name": "https://launchpad.support.sap.com/#/notes/3155571",
              "refsource": "MISC",
              "url": "https://launchpad.support.sap.com/#/notes/3155571"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "e4686d1a-f260-4930-ac4c-2f5c992778dd",
    "assignerShortName": "sap",
    "cveId": "CVE-2022-31594",
    "datePublished": "2022-06-14T18:44:35",
    "dateReserved": "2022-05-24T00:00:00",
    "dateUpdated": "2024-08-03T07:19:06.843Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2022-63619

CVE-2022-31594 (GCVE-0-2022-31594)

Tags

Sightings

Nomenclature