cvedb.io
CVE-2022-22542
MEDIUM · CVSS 6.5
EPSS exploitation probability: 0%
Published 2022-02-09T23:15:18.863 · Last modified 2026-06-17T04:28:33.903

Summary

S/4HANA Supplier Factsheet exposes the private address and bank details of an Employee Business Partner with Supplier Role, AND Enterprise Search for Customer, Supplier and Business Partner objects exposes the private address fields of Employee Business Partners, to an actor that is not explicitly authorized to have access to that information, which could compromise Confidentiality.

Affected products

sap — s\/4hana

Does this affect you?

Add your gear to cvedb and we'll alert you only when sap ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.