Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

Check Point Advisories
Check Point Advisoriesadded 2022/02/23 12:0 a.m.5 views

SAP NetWeaver AS JAVA XML External Entity Injection (CVE-2016-9563)

An XML external entity injection vulnerability exists in SAP NetWeaver. Successful exploitation of this vulnerability could result in the disclosure of file contents from the target system...

4CVSS6.9AI score0.23805EPSS
Exploits0
Circl
Circladded 2021/11/08 8:58 a.m.6 views

CVE-2016-9563

creationtimestamp| type| source ---|---|--- 2021-11-08 08:58:19+00:00| seen| MISP/f5030aca-7d5a-43a4-ae03-8f4ac8e85422 2021-11-20 09:53:52+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123 2023-12-04 19:12:45+00:00| seen| https://t.me/arpsyndicate/1283 2024-12-24 20:21:59+00:00| seen|...

6.5CVSS7.2AI score0.23805EPSS
Exploits0References3
OSV
OSVadded 2016/11/23 2:59 a.m.2 views

CVE-2016-9563

BC-BMT-BPM-DSK in SAP NetWeaver AS JAVA 7.5 allows remote authenticated users to conduct XML External Entity XXE attacks via the sap.comtcbpemhimuwlconnproviderweb/bpemuwlconn URI, aka SAP Security Note 2296909...

6.5CVSS5.8AI score0.23805EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2016/11/23 2:0 a.m.6 views

CVE-2016-9563

BC-BMT-BPM-DSK in SAP NetWeaver AS JAVA 7.5 allows remote authenticated users to conduct XML External Entity XXE attacks via the sap.comtcbpemhimuwlconnproviderweb/bpemuwlconn URI, aka SAP Security Note 2296909...

6.6AI score0.23805EPSS
Exploits0References3
CVE
CVEadded 2016/11/23 2:0 a.m.1030 views

CVE-2016-9563

This CVE concerns XML External Entity (XXE) injection in SAP NetWeaver AS Java 7.5, specifically the BC-BMT-BPM-DSK component exposed via the sap.com~tc~bpem~him~uwlconn~provider~web/bpemuwlconn URI. Root cause is an XXE flaw that could allow an authenticated remote attacker to read arbitrary fil...

6.5CVSS6.4AI score0.23805EPSS
In wildExploits0References4Affected Software1
erpscan
erpscanadded 2016/09/03 12:0 a.m.55 views

SAP NetWeaver AS JAVA - XXE vulnerability in BC-BMT-BPM-DSK component (CVE-2016-9563)

Application: SAP NetWeaver AS JAVA Versions Affected: SAP NetWeaver AS JAVA 7.5 Vendor URL: SAP Bugs: XXE Reported: 09.03.2016 Vendor response: 10.03.2016 Date of Public Advisory: 09.08.2016 Reference: SAP Security Note 2296909 Author: Vahagn Vardanyan ERPScan VULNERABILITY INFORMATION Class: XXE...

4CVSS0.1AI score0.23805EPSS
Exploits0
Rows per page
Query Builder