Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

IBM Security Bulletins
IBM Security Bulletinsadded 2023/07/14 10:30 p.m.37 views

Security Bulletin: Watson CP4D Data Stores is vulnerable to SAP NetWeaver AS Java for Deploy Service information disclosure vulnerability ( CVE-2023-24527)

Summary Potential SAP NetWeaver AS Java for Deploy Service information disclosure vulnerability CVE-2023-24527 has been identified that may affect Watson CP4D Data Stores Refer to details for additional information. Vulnerability Details CVEID:CVE-2023-24527 DESCRIPTION: SAP NetWeaver AS Java for...

5.3CVSS5.2AI score0.00345EPSS
Exploits0Affected Software1
NVD
NVDadded 2023/04/11 3:15 a.m.17 views

CVE-2023-24527

SAP NetWeaver AS Java for Deploy Service - version 7.5, does not perform any access control checks for functionalities that require user identity enabling an unauthenticated attacker to attach to an open interface and make use of an open naming and directory API to access a service which will...

5.3CVSS5.4AI score0.00345EPSS
Exploits0References2
OSV
OSVadded 2023/04/11 3:15 a.m.1 views

CVE-2023-24527

SAP NetWeaver AS Java for Deploy Service - version 7.5, does not perform any access control checks for functionalities that require user identity enabling an unauthenticated attacker to attach to an open interface and make use of an open naming and directory API to access a service which will...

5.3CVSS6.1AI score
Exploits0References2
Cvelist
Cvelistadded 2023/04/11 2:33 a.m.12 views

CVE-2023-24527 Improper Access Control in SAP NetWeaver AS Java for Deploy Service

SAP NetWeaver AS Java for Deploy Service - version 7.5, does not perform any access control checks for functionalities that require user identity enabling an unauthenticated attacker to attach to an open interface and make use of an open naming and directory API to access a service which will...

5.3CVSS5.7AI score0.00345EPSS
Exploits0References2
CVE
CVEadded 2023/04/11 2:33 a.m.59 views

CVE-2023-24527

CVE-2023-24527 affects SAP NetWeaver AS Java for Deploy Service (v7.5). The issue is improper access control: an unauthenticated remote attacker can attach to an open interface and use an open naming/directory API to access a service. This access disclosure does not modify server settings or data...

5.3CVSS5.3AI score0.00345EPSS
Exploits0References2Affected Software1
CNNVD
CNNVDadded 2023/04/11 12:0 a.m.3 views

SAP NetWeaver AS 访问控制错误漏洞

SAP NetWeaver AS is a SAP network application server from SAP. It not only provides web services, but is also the basic platform for SAP software. An access control error vulnerability exists in SAP NetWeaver AS Java for Deploy Service version 7.5, which stems from not performing any access contr...

5.3CVSS5.6AI score0.00345EPSS
Exploits0References3
Rows per page
Query Builder