CVE-2022-22536: SAP Multiple Products HTTP Request Smuggling Vulnerability.

SAP Multiple Products HTTP Request Smuggling Vulnerability. SAP NetWeaver Application Server ABAP, SAP NetWeaver Application Server Java, ABAP Platform, SAP Content Server and SAP Web Dispatcher allow HTTP request smuggling. An unauthenticated attacker can prepend a victim's request with arbitrary data, allowing for function execution impersonating the victim or poisoning intermediary Web caches.

• CISA KEV-listed (remediation due 2022-09-08)
• EPSS 93.8% (99.9% percentile)

Browse the CVE database

Read the full analysis on IntelFusions