4 matches found
SAP NetWeaver AS Java Multiple Vulnerabilities (March 2023)
SAP NetWeaver Application Server for Java is affected by multiple vulnerabilities, including the following: - Due to missing authentication check, SAP NetWeaver AS for Java - version 7.50, allows an unauthenticated attacker to attach to an open interface and make use of an open naming and directo...
CVE-2023-27268
SAP NetWeaver AS Java Object Analyzing Service - version 7.50, does not perform necessary authorization checks, allowing an unauthenticated attacker to attach to an open interface and make use of an open naming and directory API to access a service which will enable them to access but not modify...
Authorization
SAP NetWeaver AS Java Object Analyzing Service - version 7.50, does not perform necessary authorization checks, allowing an unauthenticated attacker to attach to an open interface and make use of an open naming and directory API to access a service which will enable them to access but not modify...
CVE-2023-27268
CVE-2023-27268 relates to SAP NetWeaver AS Java (Object Analyzing Service) v7.50, where missing authorization checks allow an unauthenticated attacker to attach to an open interface and use the Open Naming and Directory API to access server data, enabling privilege escalation without modifying da...