Lucene search
China National Vulnerability DatabaseCNVD-2023-28123HistoryMar 16, 2023 - 12:00 a.m.
SAP NetWeaver AS Licensing Issue Vulnerability
2023-03-1600:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
sap netweaver
sap germany
web application server
authorization problem
vulnerability
authentication
unauthenticated attackers
sensitive information
0.001 Low
EPSS
Percentile
40.7%
SAP NetWeaver AS is a SAP Web Application Server from SAP Germany. It not only provides network services, but also is the basic platform for SAP software. SAP NetWeaver AS version 7.50 has an authorization problem vulnerability, which stems from the lack of authentication checks and can be exploited by unauthenticated attackers to read and modify some sensitive information.
| CPE | Name | Operator | Version |
|---|---|---|---|
| sap sap netweaver as | eq | 7.50 |
Related
nvd
nvd
CVE-2023-23857
2023-03-14 05:15:29
cvelist
cvelist
CVE-2023-23857 Improper Access Control in SAP NetWeaver AS for Java
2023-03-14 04:36:33
cve
cve
CVE-2023-23857
2023-03-14 05:15:29
prion
prion
Authentication flaw
2023-03-14 05:15:00
nessus
nessus
SAP NetWeaver AS Java Multiple Vulnerabilities (March 2023)
2023-03-16 00:00:00