Описание
A critical vulnerability in SAP NetWeaver Application server for Java Log Viewer enables authenticated administrator users to exploit unsafe Java object deserialization. Successful exploitation can lead to full operating system compromise, granting attackers complete control over the affected system. This results in a severe impact on the confidentiality, integrity, and availability of the application and host environment.
EPSS
9.1 Critical
CVSS3
Дефекты
Связанные уязвимости
A critical vulnerability in SAP NetWeaver Application server for Java Log Viewer enables authenticated administrator users to exploit unsafe Java object deserialization. Successful exploitation can lead to full operating system compromise, granting attackers complete control over the affected system. This results in a severe impact on the confidentiality, integrity, and availability of the application and host environment.
Уязвимость сервера приложений SAP NetWeaver Application Server Java, связанная с недостатками механизма десериализации, позволяющая нарушителю полностью компрометировать систему
EPSS
9.1 Critical
CVSS3