What is CVE-2023-33987?

CVE-2023-33987 is a high-severity vulnerability in Sap_se Sap Web Dispatcher, classified under Inconsistent Interpretation of HTTP Requests (HTTP Request/Response Smuggling). CVSS score: 8.6/10. Published 2023-07-11.

How severe is CVE-2023-33987?

High severity. CVSS v3 base score is 8.6 out of 10.

Vulnerability in Sap_se Sap Web Dispatcher

CVE-2023-33987

An unauthenticated attacker in SAP Web Dispatcher - versions WEBDISP 7.49, WEBDISP 7.53, WEBDISP 7.54, WEBDISP 7.77, WEBDISP 7.81, WEBDISP 7.85, WEBDISP 7.88, WEBDISP 7.89, WEBDISP 7.90, KERNEL 7.49, KERNEL 7.53, KERNEL 7.54 KERNEL 7.77, K…

Vulnerability class: HTTP Request Smuggling

EPSS: 0.002 (43.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.6 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H.

Affected products

Sap_se Sap Web Dispatcher — versions WEBDISP 7.49, WEBDISP 7.53, WEBDISP 7.54

Weakness classification (CWE)

CWE-444 — Inconsistent Interpretation of HTTP Requests (HTTP Request/Response Smuggling)

References

Frequently asked questions

What is CVE-2023-33987?: CVE-2023-33987 is a high-severity vulnerability in Sap_se Sap Web Dispatcher, classified under Inconsistent Interpretation of HTTP Requests (HTTP Request/Response Smuggling). CVSS score: 8.6/10. Published 2023-07-11.
How severe is CVE-2023-33987?: High severity. CVSS v3 base score is 8.6 out of 10.