SAP Adaptive Server Enterprise (ASE), formerly known as Sybase SQL Server, is a high-performance SQL database server used for mission-critical apps requiring consistent, secure and rapid responses to requests. It is used for managing and manipulating data in relational databases. ASE is a versatile, enterprise-class RDBMS geared towards high-speed transactional operations.

SAP Adaptive Server Enterprise

SAP Financial Consolidation - version 1010,?does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges.



CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2022-31595	HIGH	8.8	SAP Adaptive Server Enterprise	cpe:2.3:a:sap:adaptive_server_enterprise	No	No	Jun 14, 2022
CVE-2022-22528	HIGH	7.8	SAP Adaptive Server Enterprise	cpe:2.3:a:sap:adaptive_server_enterprise	No	Yes	Feb 09, 2022
CVE-2020-6295	HIGH	7.8	SAP Adaptive Server Enterprise	cpe:2.3:a:sap:adaptive_server_enterprise	No	Yes	Aug 12, 2020
CVE-2022-31594	MEDIUM	6.7	SAP Adaptive Server Enterprise	cpe:2.3:a:sap:adaptive_server_enterprise	No	Yes	Jun 14, 2022
CVE-2020-6317	LOW	3.5	SAP Adaptive Server Enterprise	cpe:2.3:a:sap:adaptive_server_enterprise	No	Yes	Nov 30, 2020

CVE-2022-31595:
SAP Adaptive Server Enterprise vulnerability analysis and mitigation

Overview

Technical details

Mitigation and workarounds

Additional resources

8.8

Related SAP Adaptive Server Enterprise vulnerabilities:

Benchmark your Cloud Security Posture

Additional Wiz resources

Cloud Vulnerability DB

Cloud Threat Landscape

PEACH

Ready to see Wiz in action?

CVE-2022-31595: SAP Adaptive Server Enterprise vulnerability analysis and mitigation