CVE-2023-36926

Published: Aug 8, 2023
Updated: May 4, 2025
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2023-36926" target="_blank" rel="noopener"> CVE-2023-36926
Severity: Medium
Exploit:

Due to missing authentication check in SAP Host Agent - version 7.22, an unauthenticated attacker can set an undocumented parameter to a particular compatibility value and in turn call read functions. This allows the attacker to gather some non-sensitive information about the server. There is no impact on integrity or availability.