Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SAP NetWeaver, ABAP Platform and SAP Host Agent - versions KERNEL 7.22, 7.49, 7.53, 7.77, 7.81, 7.85, 7.86, 7.87, 7.88, 8.04, KRNL64NUC 7.22, 7.22EXT, 7.49, KRNL64UC 7.22, 7.22EXT, 7.49, 7.53, 8.04, SAPHOSTAGENT 7.22, allows an authenticated user to misuse a function of sapcontrol webfunctionality(startservice) in Kernel which enables malicious users to retrieve information. On successful exploitation, an attacker can obtain technical information like system number or physical address, which is otherwise restricted, causing a limited impact on the confidentiality of the application.
CVSS Information
N/A
Vulnerability Type
服务端请求伪造(SSRF)
Vulnerability Title
SAP Host Agent 代码问题漏洞
Vulnerability Description
SAP Host Agent是德国思爱普(SAP)公司的一套支持操作系统监视、数据库监视和系统实例监视等多项生命周期管理任务的代理程序。 SAP NetWeaver、ABAP Platform、SAP Host Agent存在代码问题漏洞。攻击者利用该漏洞检索任意信息。以下产品及版本受到影响:KERNEL 7.22版本、7.49版本、7.53版本、7.77版本、7.81版本、7.85版本、7.86版本、7.87版本、7.88版本、8.04版本,KRNL64NUC 7.22版本、7.22EXT版本、7.49
CVSS Information
N/A
Vulnerability Type
N/A