Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SAP NetWeaver Application Server Java(HTTP Service), versions - 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, does not sufficiently validate logon group in URLs, resulting in a content spoofing vulnerability when directory listing is enabled.
CVSS Information
N/A
Vulnerability Type
使用欺骗进行的认证绕过
Vulnerability Title
SAP NetWeaver Application Server Java 安全漏洞
Vulnerability Description
SAP NetWeaver Application Server Java是德国思爱普(SAP)公司的一款提供了Java运行环境的应用程序服务器。该产品主要用于开发和运行Java EE应用程序。 SAP NetWeaver Application Server Java 存在安全漏洞,该漏洞源于没有充分验证url中的登录组,导致在启用目录列表时存在内容欺骗。以下产品及版本受到影响:SAP NetWeaver Application Server Java(HTTP Service) - 7.10, 7.1
CVSS Information
N/A
Vulnerability Type
N/A