Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Missing Authorization check in SAP NetWeaver (ABAP Class Builder)
Vulnerability Description
Due to missing authorization check, SAP NetWeaver (ABAP Class Builder) allows an attacker to gain higher access levels than they should have, resulting in escalation of privileges. On successful exploitation, this could result in disclosure of highly sensitive information. It could also have a high impact on the integrity and availability of the application.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
授权机制缺失
Vulnerability Title
SAP NetWeaver ABAP Server 安全漏洞
Vulnerability Description
SAP NetWeaver ABAP Server是德国思爱普(SAP)公司的一个用作 SAP 产品的 Web 应用程序服务器。 SAP NetWeaver ABAP Server存在安全漏洞,该漏洞源于缺少授权检查,可能导致权限提升和信息泄露。
CVSS Information
N/A
Vulnerability Type
N/A