2 matches found
CVE-2023-24527
CVE-2023-24527 affects SAP NetWeaver AS Java for Deploy Service (v7.5). The issue is improper access control: an unauthenticated remote attacker can attach to an open interface and use an open naming/directory API to access a service. This access disclosure does not modify server settings or data...
CVE-2023-24527 Improper Access Control in SAP NetWeaver AS Java for Deploy Service
SAP NetWeaver AS Java for Deploy Service - version 7.5, does not perform any access control checks for functionalities that require user identity enabling an unauthenticated attacker to attach to an open interface and make use of an open naming and directory API to access a service which will...