CVE-2023-27269 Information

Description

SAP NetWeaver Application Server for ABAP and ABAP Platform - versions 700 701 702 731 740 750 751 752 753 754 755 756 757 791 allows an attacker with non-administrative authorizations to exploit a directory traversal flaw in an available service to overwrite the system files. In this attack no data can be read but potentially critical OS files can be overwritten making the system unavailable.

Reference

https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html https://launchpad.support.sap.com/#/notes/3294595