2 matches found
CVE-2022-30354
OvalEdge 5.2.8.0 and earlier is affected by a Sensitive Data Exposure vulnerability via a GET request to /user/getUserWithTeam. Authentication is required. The information disclosed is associated with all registered user ID numbers...
PT-2023-28365 · Sap · Netweaver As Java Logon
Name of the Vulnerable Software and Affected Versions: NetWeaver AS Java Logon application version 7.50 Description: The issue allows an unauthenticated attacker to brute force the login functionality, identifying legitimate user ids. This has an impact on confidentiality, with no other impact on...