The main vector of attack is to either send a large amount of crafted Wavefront objects in email messages or via network shares. In such cases, the attacker will be able to cause the SAP system to receive a large amount of Wavefront objects, which eventually leads to the application crash.

Impacted customers will see the following warning message when trying to open an object received from untrusted sources: “The system cannot find the file specified. One or more components failed. The file might be corrupted, unreadable, or unavailable.” Unfortunately, there is no solution to this issue other than to restart the SAP system.

Vulnerability Details

This vulnerability affects SAP applications running on Linux and Windows.
SAP has released an update for SAP ERP 6.0, SAP CRM 7.0, SAP CRM On-Demand 7.1, and SAP FI/CO 3 ERP 6.0 that fixes this issue.

SAP Security Note: sup _xpd_file_unavailable


The following message will appear in the Security Notes:

“The system cannot find the file specified. One or more components failed. The file might be corrupted, unreadable, or unavailable.”
Unfortunately, there is no solution to this issue other than to restart the SAP system.

Vulnerability details

This vulnerability is present in the SAP system, which is used by several large corporations.

The vulnerability can be exploited to render the application unusable. The attacker sends a large number of Wavefront objects to the SAP system, which eventually leads to the application crash. There is no solution for this issue other than restarting the SAP system.

Timeline

Published on: 10/11/2022 21:15:00 UTC
Last modified on: 10/12/2022 20:02:00 UTC

References