CVE-2023-40308 (commoncryptolib, content_server, extended_application_services_and_runtime, hana_database, host_agent, netweaver_application_server_abap, netweaver_application_server_java, sapssoext, web_dispatcher)

SAP CommonCryptoLib allows an unauthenticated attacker to craft a request, which when submitted to an open port causes a memory corruption error in a library which in turn causes the target component to crash making it unavailable. There is no ability to view or modify any information.Read More