Advisory
On 08.08.2023 a security relevant correction has been released by SAP SE. The manufacturer resolves an issue within SAP PowerDesigner.
SAP Note 3341599 addresses "[CVE-2023-36923] Code Injection vulnerability in SAP PowerDesigner" to prevent code injection with a high risk for exploitation.
A workaround does exist, according to SAP Security Advisory team. It is advisable to implement the correction as part of maintenance, the team suggests.
Risk specification
SAP Power Designer allows an unauthenticated attacker with local access to place malicious libraries that the application can execute, resulting in a code injection vulnerability.Solution
The application does not load custom unicode extension Distribution Link Libraries by default. Circumstances exist that prevent the timely installation of a patch provided by the manufacturer. In such cases, you may consider applying the suggested workaround as a temporary or compensating mitigation: "As a workaround, ask system administrator to create a “<SystemDisk>:\bin64\” folder with severely restricted permissions so that NO normal users can write to it (nor delete it)".
- 10.0 [CVE-2021-44228] Remote Code Execution vulnerability associated with Apache Log4j 2 component used in SAP Customer Checkout
- 10.0 [CVE-2021-44228] Remote Code Execution vulnerability associated with Apache Log4j 2 component used in SAP BTP Cloud Foundry
- 10.0 [CVE-2021-44228] Remote Code Execution vulnerability associated with Apache Log4j 2 component used in SAP HANA XSA
- 10.0 [CVE-2021-44228] Remote Code Execution vulnerability associated with Apache Log4j 2 component used in XSA Cockpit
- 10.0 [CVE-2021-44228] Remote Code Execution vulnerability associated with Apache Log4j 2 component used in SAP Edge Services On Premise Edition
