4 matches found
CVE-2016-7437
SAP Netweaver 7.40 improperly logs 1 DUI and 2 DUJ events in the SAP Security Audit Log as non-critical, which might allow local users to hide rejected attempts to execute RFC function callbacks by leveraging filtering of non-critical events in audit analysis reports, aka SAP Security Note 225231...
Code injection
SAP Netweaver 7.40 improperly logs 1 DUI and 2 DUJ events in the SAP Security Audit Log as non-critical, which might allow local users to hide rejected attempts to execute RFC function callbacks by leveraging filtering of non-critical events in audit analysis reports, aka SAP Security Note 225231...
CVE-2016-7437
SAP Netweaver 7.40 improperly logs 1 DUI and 2 DUJ events in the SAP Security Audit Log as non-critical, which might allow local users to hide rejected attempts to execute RFC function callbacks by leveraging filtering of non-critical events in audit analysis reports, aka SAP Security Note 225231...
CVE-2016-7437
SAP NetWeaver 7.40 is affected by an issue where the SAP Security Audit Log misclassifies (1) DUI and (2) DUJ events as non-critical, potentially enabling local users to obscure rejected RFC function callback attempts by filtering non-critical events in audit reports. This is linked to SAP Securi...