Lucene search
K

4 matches found

Circl
Circl
added 2023/03/14 12:54 p.m.7 views

CVE-2023-23857

creationtimestamp| type| source ---|---|--- 2023-03-14 12:54:01+00:00| seen| https://t.me/cibsecurity/59946 2023-03-15 07:54:44+00:00| exploited| https://t.me/kasperskyb2b/516 2023-03-16 13:40:07+00:00| seen| https://t.me/truesecator/4175 2025-02-27 18:26:49+00:00| seen|...

9.9CVSS8.1AI score0.00544EPSS
Exploits0References4
Cvelist
Cvelist
added 2023/03/14 4:36 a.m.70 views

CVE-2023-23857 Improper Access Control in SAP NetWeaver AS for Java

Due to missing authentication check, SAP NetWeaver AS for Java - version 7.50, allows an unauthenticated attacker to attach to an open interface and make use of an open naming and directory API to access services which can be used to perform unauthorized operations affecting users and services...

9.9CVSS9.5AI score0.00544EPSS
Exploits0References2
CVE
CVE
added 2023/03/14 4:36 a.m.129 views

CVE-2023-23857

CVE-2023-23857 affects SAP NetWeaver AS for Java 7.50. The issue is an authentication gap allowing unauthenticated actors to attach to an open interface and use a naming/directory API to access services, potentially reading/modifying sensitive information and causing system unavailability. The pr...

9.9CVSS8.6AI score0.00544EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/03/14 4:36 a.m.8 views

CVE-2023-23857 Improper Access Control in SAP NetWeaver AS for Java

Due to missing authentication check, SAP NetWeaver AS for Java - version 7.50, allows an unauthenticated attacker to attach to an open interface and make use of an open naming and directory API to access services which can be used to perform unauthorized operations affecting users and services...

9.9CVSS9.4AI score0.00544EPSS
Exploits0References2
Rows per page
Query Builder