Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SAP AS JAVA (Key Storage Service), versions - 7.10, 7.11, 7.20 ,7.30, 7.31, 7.40, 7.50, has the key material which is stored in the SAP NetWeaver AS Java Key Storage service stored in the database in the DER encoded format and is not encrypted. This enables an attacker who has administrator access to the SAP NetWeaver AS Java to decode the keys because of missing encryption and get some application data and client credentials of adjacent systems. This highly impacts Confidentiality as information disclosed could contain client credentials of adjacent systems.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SAP AS JAVA 安全漏洞
Vulnerability Description
SAP Business Objects Business Intelligence Platform等都是德国思爱普(SAP)公司的产品。SAP Business Objects Business Intelligence Platform是一套商业智能软件和企业绩效解决方案套件。SAP Netweaver是一套面向服务的集成化应用平台。SAP ERP是一系列用于ERP管理的软件。 SAP AS JAVA(密钥存储服务)存在安全漏洞,该漏洞源于作为JAVA密钥存储服务存储在SAP NetWeaver中的
CVSS Information
N/A
Vulnerability Type
N/A