Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2023-28121
HistoryMar 16, 2023 - 12:00 a.m.

SAP NetWeaver AS Java Licensing Issue Vulnerability (CNVD-2023-28121)

2023-03-1600:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
sap
netweaver
java
authorization
vulnerability
open port
server data
naming and directory api

0.001 Low

EPSS

Percentile

32.2%

JSON

SAP NetWeaver AS Java is a German SAP (SAP) company provides a Java runtime environment for the application server. The product is mainly used to develop and run Java EE applications. An authorization issue vulnerability exists in SAP NetWeaver AS Java version 7.50, which stems from a failure to perform the required authorization checks. An attacker could use the vulnerability to connect to an open port and access server data using the Open Naming and Directory API.

CPENameOperatorVersion
sap netweaver as javaeq7.50

Related

cvelist 1
nvd 1
prion 1
cve 1
nessus 1
cvelist
cvelist
CVE-2023-27268 Improper Access Control in SAP NetWeaver AS Java (Object Analyzing Service)
2023-03-14 04:57:30
nvd
nvd
CVE-2023-27268
2023-03-14 05:15:30
prion
prion
Authorization
2023-03-14 05:15:00
cve
cve
CVE-2023-27268
2023-03-14 05:15:30
nessus
nessus
SAP NetWeaver AS Java Multiple Vulnerabilities (March 2023)
2023-03-16 00:00:00

0.001 Low

EPSS

Percentile

32.2%

JSON
Related for CNVD-2023-28121
cvelist1nvd1prion1cve1nessus1