CVE-2022-35290

2022-08-0920:12:47

CWE-200

sap

www.cve.org

sap authenticator

android

information access

AI Score

7.5

Confidence

High

EPSS

0.002

Percentile

52.5%

JSON

Under certain conditions SAP Authenticator for Android allows an attacker to access information which would otherwise be restricted.

CNA Affected

[
  {
    "product": "SAP Authenticator for Android",
    "vendor": "SAP SE",
    "versions": [
      {
        "lessThan": "1.2.17",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

launchpad.support.sap.com/#/notes/3216653

www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html