CVE-2022-27667 – CVE-2022-27667 is an information disclosure vul... (How to Fix)

Q: What is the severity of CVE-2022-27667?

CVE-2022-27667 has a CVSS score of 7.5 (HIGH). CVE-2022-27667 is an information disclosure vulnerability in SAP BusinessObjects Business Intelligence platform's Client Management Console (CMC). It allows attackers to access restricted information under certain conditions. Organizations running SAP BusinessObjects BI platform version 430 are affected.

📋 TL;DR

CVE-2022-27667 is an information disclosure vulnerability in SAP BusinessObjects Business Intelligence platform's Client Management Console (CMC). It allows attackers to access restricted information under certain conditions. Organizations running SAP BusinessObjects BI platform version 430 are affected.

💻 Affected Systems

Products:

SAP BusinessObjects Business Intelligence platform

Versions: Version 430

Operating Systems: All supported platforms

Default Config Vulnerable: ⚠️ Yes

Notes: Specifically affects the Client Management Console (CMC) component

📦 What is this software?

Businessobjects Business Intelligence Platform by Sap

View all CVEs affecting Businessobjects Business Intelligence Platform →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers could access sensitive business intelligence data, configuration details, or user information that could facilitate further attacks.

🟠

Likely Case

Unauthorized access to restricted system information or configuration data that shouldn't be publicly accessible.

🟢

If Mitigated

Limited exposure with proper network segmentation and access controls in place.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: LOW

Requires specific conditions to trigger the vulnerability

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Apply SAP Note 3145769

Vendor Advisory: https://launchpad.support.sap.com/#/notes/3145769

Restart Required: Yes

Instructions:

1. Download SAP Note 3145769 from SAP Support Portal. 2. Apply the patch according to SAP's instructions. 3. Restart the affected services.

🔧 Temporary Workarounds

Network Segmentation

all

Restrict access to CMC interface to authorized users only

Access Control

all

Implement strict authentication and authorization controls for CMC access

🧯 If You Can't Patch

Implement network segmentation to isolate CMC from untrusted networks
Apply strict access controls and monitor for unauthorized access attempts

🔍 How to Verify

Check if Vulnerable:

Check if running SAP BusinessObjects BI platform version 430 with CMC component

Check Version:

Check SAP BusinessObjects version through CMC interface or system properties

Verify Fix Applied:

Verify SAP Note 3145769 has been applied successfully

📡 Detection & Monitoring

Log Indicators:

Unusual access patterns to CMC interface
Access attempts to restricted endpoints

Network Indicators:

Traffic to CMC endpoints from unauthorized sources

SIEM Query:

source="CMC" AND (event="unauthorized_access" OR event="information_disclosure")

📊 Metadata

CVE ID: CVE-2022-27667

CVSS v3 Score: 7.5 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE: CWE-200

Published: April 12, 2022

Last Updated: November 21, 2024

🔗 References

https://launchpad.support.sap.com/#/notes/3145769 Permissions Required,Vendor Advisory
https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html Vendor Advisory
https://launchpad.support.sap.com/#/notes/3145769 Permissions Required,Vendor Advisory
https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2022-27667, you might also want to check these: