CVE-2023-33990

HIGH Year: 2023
CVSS v3 Score
7.1
High
Weakness Type
CWE-277
View all →

Vulnerability Description

SAP SQL Anywhere - version 17.0, allows an attacker to prevent legitimate users from accessing the service by crashing the service. An attacker with low privileged account and access to the local system can write into the shared memory objects. This can be leveraged by an attacker to perform a Denial of Service. Further, an attacker might be able to modify sensitive data in shared memory objects.This issue only affects SAP SQL Anywhere on Windows. Other platforms are not impacted.

Related Vulnerabilities

CVE-2025-29982

MEDIUM
CVSS:6.8(Medium)

Dell Wyse Management Suite, versions prior to WMS 5.1, contains an Insecure Inherited Permissions vulnerability. A low privileged attacker with local access could potentially exploit this vulnerabilit...

CWE-2772025

CVE-2024-27822

HIGH
CVSS:7.4(High)

A logic issue was addressed with improved restrictions. This issue is fixed in macOS Sonoma 14.5. An app may be able to gain root privileges.

CWE-2772024

CVE-2024-27847

HIGH
CVSS:7.4(High)

This issue was addressed with improved checks This issue is fixed in iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5. An app may be able to bypass Privacy preferences.

CWE-2772024

CVE-2023-45736

MEDIUM
CVSS:6.7(Medium)

Insecure inherited permissions in Intel(R) Power Gadget software for Windows all versions may allow an authenticated user to potentially enable escalation of privilege via local access.

CWE-2772023

CVE-2024-51448

MEDIUM
CVSS:6.7(Medium)

IBM Robotic Process Automation 21.0.0 through 21.0.7.17 and 23.0.0 through 23.0.18 could allow a local user to escalate their privileges. All files in the install inherit the file permissions of the p...

CWE-2772024

CVE-2024-7143

MEDIUM
CVSS:6.7(Medium)

A flaw was found in the Pulp package. When a role-based access control (RBAC) object in Pulp is set to assign permissions on its creation, it uses the `AutoAddObjPermsMixin` (typically the add_roles_f...

CWE-2772024