Netweaver Application Server Java@7.40 Security Vulnerabilities and Issues — Netweaver Application Server Java@7.40 CVE List

Lucene search

SapNetweaver Application Server Java7.40

2 matches found

CVE•added 2016/02/16 3:59 p.m.•995 views

CVE-2016-2386

SQL injection vulnerability in the UDDI server in SAP NetWeaver J2EE Engine 7.40 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, aka SAP Security Note 2101079.

9.8CVSS9.8AI score0.44333EPSS

CVE•added 2016/11/23 2:59 a.m.•32 views

CVE-2016-9562

SAP NetWeaver AS JAVA 7.4 allows remote attackers to cause a Denial of Service (null pointer exception and icman outage) via an HTTPS request to the sap.com~P4TunnelingApp!web/myServlet URI, aka SAP Security Note 2313835.

7.5CVSS7.5AI score0.01174EPSS