Описание
SAP NetWeaver AS Java allows an attacker authenticated as a non-administrative user to use a flaw in an available service to upload an arbitrary file. This file when executed can lead to a full compromise of confidentiality, integrity and availability of the system.
EPSS
Процентиль: 26%
0.00092
Низкий
9.9 Critical
CVSS3
Дефекты
CWE-94
Связанные уязвимости
CVSS3: 9.9
github
5 месяцев назад
SAP NetWeaver AS Java allows an attacker authenticated as a non-administrative user to use a flaw in an available service to upload an arbitrary file. This file when executed can lead to a full compromise of confidentiality, integrity and availability of the system.
CVSS3: 9.9
fstec
10 месяцев назад
Уязвимость программных интеграционных платформ SAP NetWeaver AS Java, связанная с неверным управлением генерацией кода, позволяющая нарушителю загрузить произвольный файл
EPSS
Процентиль: 26%
0.00092
Низкий
9.9 Critical
CVSS3
Дефекты
CWE-94