Critical SAP NetWeaver & CX Commerce Flaw Leads To Complete Takeover

Three vulnerabilities associated with CSS injection, file upload, and far-off code execution bear been realized in the SAP Customer Ride (CX) commerce cloud and SAP Netweaver Application.

These two vulnerabilities bear been assigned with CVE-2019-17495 and CVE-2022-36364.

The severity of those vulnerabilities is CVE-2019-17495 – 9.8 (Extreme) and CVE-2022-36364 8.8 (Excessive), respectively.

CVE-2019-17495 exists in the Ride UI library, and CVE-2022-36364 exists in the Apache Calcite Avatica library aged in SAP Commerce Cloud.

On the other hand, the File upload vulnerability CVE-2024-33006 exists in the SAP Netweaver utility server ABAP and ABAP (Evolved Industry Application Programming) platform.

The severity for this vulnerability has been given as 9.8 (Extreme).

All of those vulnerabilities bear been patched as section of the HotNews change for Would possibly perchance well perchance 2024 by SAP.

Vulnerability Evaluation

CVE-2019-17495: Cascading Kind Sheets (CSS) Injection Vulnerability In Ride UI

This vulnerability which exists in the Ride UI would be exploited by a threat actor which permits the spend of the Relative Course Overwrite (RPO) formula.

This, in flip, permits them to present CSS-based entirely input discipline price exfiltration enjoy the exfiltration of a CSRF token price.

To point out additional, Ride UI intentionally permits the embedding of untrusted JSON knowledge from far-off servers.

On the other hand, it became no longer identified beforehand that