CVE-2022-22531 is a vulnerability in SAP S4hana
Published on January 14, 2022

The F0743 Create Single Payment application of SAP S/4HANA - versions 100, 101, 102, 103, 104, 105, 106, does not check uploaded or downloaded files. This allows an attacker with basic user rights to run arbitrary script code, resulting in sensitive information being disclosed or modified.

NVD

Products Associated with CVE-2022-22531

Want to know whenever a new CVE is published for SAP S4hana? stack.watch will email you.

SAP S4hana

Affected Versions

SAP SE SAP S/4HANA:

Version 100 is affected.
Version 101 is affected.
Version 102 is affected.
Version 103 is affected.
Version 104 is affected.
Version 105 is affected.
Version 106 is affected.

Exploit Probability

EPSS

0.37%

Percentile

58.58%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2022-22531 is a vulnerability in SAP S4hanaPublished on January 14, 2022

Products Associated with CVE-2022-22531

Affected Versions

Exploit Probability

CVE-2022-22531 is a vulnerability in SAP S4hana
Published on January 14, 2022