Netweaver Development Infrastructure@7.50 Security Vulnerabilities and Issues — Netweaver Development Infrastructure@7.50 CVE List

Lucene search

SapNetweaver Development Infrastructure7.50

3 matches found

CVE•added 2021/09/15 7:15 p.m.•167 views

CVE-2021-33690

Server-Side Request Forgery (SSRF) vulnerability has been detected in the SAP NetWeaver Development Infrastructure Component Build Service versions - 7.11, 7.20, 7.30, 7.31, 7.40, 7.50The SAP NetWeaver Development Infrastructure Component Build Service allows a threat actor who has access to the se...

9.9CVSS9.3AI score0.91298EPSS

CVE•added 2022/06/14 7:15 p.m.•56 views

CVE-2022-29618

Due to insufficient input validation, SAP NetWeaver Development Infrastructure (Design Time Repository) - versions 7.30, 7.31, 7.40, 7.50, allows an unauthenticated attacker to inject script into the URL and execute code in the user’s browser. On successful exploitation, an attacker can view or mod...

6.1CVSS6.3AI score0.01027EPSS

CVE•added 2021/09/15 7:15 p.m.•28 views

CVE-2021-33691

NWDI Notification Service versions - 7.31, 7.40, 7.50, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.SAP NetWeaver Development Infrastructure Notification Service allows a threat actor to send crafted scripts to a victim. If the victim ha...

6.9CVSS6AI score0.00231EPSS