Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Knowledge Management (XMLForms) in SAP NetWeaver, versions 7.30, 7.31, 7.40 and 7.50 does not sufficiently validate an XML document accepted from an untrusted source.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SAP NetWeaver Knowledge Management (XMLForms) 安全漏洞
Vulnerability Description
SAP NetWeaver是德国思爱普(SAP)公司的一套面向服务的集成化应用平台。该平台可为SAP应用提供开发和运行环境。Knowledge Management(XMLForms)是其中的一个知识管理组件。 SAP NetWeaver中的Knowledge Management (XMLForms)存在XML外部实体注入漏洞,该漏洞源于程序没有充分的验证来自不可信源的XML文档。远程攻击者可利用该漏洞获取敏感信息的访问权限或造成拒绝服务。以下版本受到影响:SAP NetWeaver 7.30版本,7.
CVSS Information
N/A
Vulnerability Type
N/A