Design/Logic Flaw

2023-10-1002:15:00

PRIOn knowledge base

www.prio-n.com

sap

netweaver

java

vulnerability

limited impact

crafted request

web application

6.4 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.0%

JSON

SAP NetWeaver AS Java (GRMG Heartbeat application) - version 7.50, allows an attacker to send a crafted request from a vulnerable web application, causing limited impact on confidentiality and integrity of the application.

CPENameOperatorVersion
netweaver_application_server_javaeq7.50

CPE	Name	Operator	Version
	netweaver_application_server_java	eq	7.50

References

me.sap.com/notes/3333426

www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html