5 matches found
EUVD-2023-46920
Malicious code in bioql PyPI...
CVE-2023-42480
The unauthenticated attacker in NetWeaver AS Java Logon application - version 7.50, can brute force the login functionality to identify the legitimate user ids. This will have an impact on confidentiality but there is no other impact on integrity or availability...
CVE-2023-42480
The CVE-2023-42480 issue affects SAP NetWeaver AS Java Logon (version 7.50). An unauthenticated attacker can brute-force the login function to enumerate legitimate user IDs, resulting in confidentiality impact (user ID disclosure) with no reported impact on integrity or availability. Multiple con...
SAP NetWeaver AS Java Logon Security Vulnerability
SAP NetWeaver AS is a SAP network application server from SAP. It not only provides network services, but also is the basic platform for SAP software. A security vulnerability exists in SAP NetWeaver AS Java Logon version 7.50. An attacker could use this vulnerability to brute-force the login...
CVE-2018-2452
The logon application of SAP NetWeaver AS Java 7.10 to 7.11, 7.20, 7.30, 7.31, 7.40, 7.50 does not sufficiently encode user-controlled inputs, resulting in a cross-site scripting XSS vulnerability...