exploitDog

GHSA-jcw2-j9rw-pcgc

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.4

Описание

By default, the SAP NetWeaver AS Java keystore service does not sufficiently restrict the access to resources that should be protected. This has been fixed in SAP NetWeaver AS Java (ServerCore versions 7.11, 7.20, 7.30, 7.31, 7.40, 7.50).

By default, the SAP NetWeaver AS Java keystore service does not sufficiently restrict the access to resources that should be protected. This has been fixed in SAP NetWeaver AS Java (ServerCore versions 7.11, 7.20, 7.30, 7.31, 7.40, 7.50).

Ссылки

EPSS

Процентиль: 40%

0.00186

Низкий

7.4 High

CVSS3

CVE ID

Дефекты

CWE-862

Связанные уязвимости

CVE-2018-2503

CVSS3: 7.4

nvd

около 7 лет назад

By default, the SAP NetWeaver AS Java keystore service does not sufficiently restrict the access to resources that should be protected. This has been fixed in SAP NetWeaver AS Java (ServerCore versions 7.11, 7.20, 7.30, 7.31, 7.40, 7.50).

BDU:2020-00804

CVSS3: 7.4

fstec

около 7 лет назад

Уязвимость службы keystore программной интеграционной платформы SAP NetWeaver, позволяющая нарушителю раскрыть защищаемую информацию

EPSS

Процентиль: 40%

0.00186

Низкий

7.4 High

CVSS3

CVE ID

Дефекты

CWE-862