writeups.xyz / Chained to hit: Discovering new vectors to gain remote and root access in SAP Enterprise Software

Submitter : c2a

Date: 9 August 2023

Bounty : undisclosed

Vulnerabilities :

• SAP
• Java RMI
• RCE
• JNDI Injection
• SQL Injection
• DoS
• SSRF
• Missing Authentication
• HTTP Header Injection
• Privilege Escalation
• Information Disclosure
• Memory Corruption

Programs :

• SAP

Authors :

• Pablo Artuso (@Lmkalg)
• Yvan Genuer

Link :
https://i.blackhat.com/BH-US-23/Presentations/US-23-Genuer-chained-to-hit-discovering-new-vectors-to-gain-remote-and-root-access-in-sap-enterprise-software-wp.pdf