Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Denial of Service in SAP NetWeaver AS for ABAP and ABAP Platform
Vulnerability Description
SAP NetWeaver AS for ABAP and ABAP Platform - versions 740, 750, 751, 752, 753, 754, 755, 756, 757, 791, allows an attacker authenticated as a non-administrative user to craft a request with certain parameters which can consume the server's resources sufficiently to make it unavailable over the network without any user interaction.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
未加控制的资源消耗(资源穷尽)
Vulnerability Title
SAP NetWeaver AS 资源管理错误漏洞
Vulnerability Description
SAP NetWeaver AS是德国思爱普(SAP)公司的一款SAP网络应用服务器。它不仅能提供网络服务,且还是SAP软件的基本平台。 SAP NetWeaver AS for ABAP and ABAP Platform 740、750、751、752、753、754、755、756、757、791版本存在资源管理错误漏洞,该漏洞源于允许经过身份验证的攻击者作为非管理用户使用某些参数制作请求,这些参数可以消耗 服务器的资源。
CVSS Information
N/A
Vulnerability Type
N/A