Lucene search
China National Vulnerability DatabaseCNVD-2023-28121HistoryMar 16, 2023 - 12:00 a.m.
SAP NetWeaver AS Java Licensing Issue Vulnerability (CNVD-2023-28121)
2023-03-1600:00:00
China National Vulnerability Database
www.cnvd.org.cn
11
sap
netweaver
java
authorization
vulnerability
open port
server data
naming and directory api
EPSS
0.001
Percentile
36.0%
SAP NetWeaver AS Java is a German SAP (SAP) company provides a Java runtime environment for the application server. The product is mainly used to develop and run Java EE applications. An authorization issue vulnerability exists in SAP NetWeaver AS Java version 7.50, which stems from a failure to perform the required authorization checks. An attacker could use the vulnerability to connect to an open port and access server data using the Open Naming and Directory API.
Related
cvelist
cvelist
nvd
nvd
CVE-2023-27268
2023-03-14 05:15:30
prion
prion
Authorization
2023-03-14 05:15:00
cve
cve
CVE-2023-27268
2023-03-14 05:15:30
nessus
nessus
SAP NetWeaver AS Java Multiple Vulnerabilities (March 2023)
2023-03-16 00:00:00