Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Multiple vulnerabilities in SAP NetWeaver AS for JAVA(Adobe Document Services)
Vulnerability Description
Adobe Document Service allows an attacker with administrator privileges to send a crafted request from a vulnerable web application. It is usually used to target internal systems behind firewalls that are normally inaccessible to an attacker from the external network, resulting in a Server-Side Request Forgery vulnerability. On successful exploitation, the attacker can read or modify any file and/or make the entire system unavailable.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Vulnerability Type
服务端请求伪造(SSRF)
Vulnerability Title
SAP Adobe Document Service 代码问题漏洞
Vulnerability Description
SAP Adobe Document Service(SAP ADS)是德国思爱普(SAP)公司的一个文档管理服务。 SAP Adobe Document Service存在代码问题漏洞,该漏洞源于允许具有管理员权限的攻击者从易受攻击的 Web 应用程序发送精心设计的请求,容易受到服务器端请求伪造攻击。
CVSS Information
N/A
Vulnerability Type
N/A