Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 4:48 a.m.8 views

CVE-2023-31405

SAP NetWeaver AS for Java - versions ENGINEAPI 7.50, SERVERCORE 7.50, J2EE-APPS 7.50, allows an unauthenticated attacker to craft a request over the network which can result in unwarranted modifications to a system log without user interaction. There is no ability to view any information or any...

5.3CVSS6.7AI score0.00447EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/07/11 2:23 a.m.11 views

CVE-2023-31405 Log Injection vulnerability in SAP NetWeaver AS for Java (Log Viewer)

SAP NetWeaver AS for Java - versions ENGINEAPI 7.50, SERVERCORE 7.50, J2EE-APPS 7.50, allows an unauthenticated attacker to craft a request over the network which can result in unwarranted modifications to a system log without user interaction. There is no ability to view any information or any...

5.3CVSS6.7AI score0.00447EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/07/11 2:23 a.m.38 views

CVE-2023-31405 Log Injection vulnerability in SAP NetWeaver AS for Java (Log Viewer)

SAP NetWeaver AS for Java - versions ENGINEAPI 7.50, SERVERCORE 7.50, J2EE-APPS 7.50, allows an unauthenticated attacker to craft a request over the network which can result in unwarranted modifications to a system log without user interaction. There is no ability to view any information or any...

5.3CVSS5.5AI score0.00447EPSS
Exploits0References2
CVE
CVE
added 2023/07/11 2:23 a.m.71 views

CVE-2023-31405

SAP NetWeaver AS for Java (ENGINEAPI 7.50, SERVERCORE 7.50, J2EE-APPS 7.50) is affected by a log-injection vulnerability via unauthenticated network requests that can modify system logs without user interaction. The root cause is log injection from network input; there is no information disclosur...

5.3CVSS5.2AI score0.00447EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder