漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Sensitive Data Exposure in SAP Web Dispatcher and Internet Communication Manager (ICM)
Vulnerability Description
SAP Web Dispatcher and ICM may expose internal testing interfaces that are not intended for production. If enabled, unauthenticated attackers could exploit them to access diagnostics, send crafted requests, or disrupt services. This vulnerability has a high impact on confidentiality, availability and low impact on integrity and of the application.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:L/A:H
Vulnerability Type
CWE-1244
Vulnerability Title
SAP Web Dispatcher和SAP Internet Communication Manager 安全漏洞
Vulnerability Description
SAP Web Dispatcher和SAP Internet Communication Manager(SAP ICM)都是德国思爱普(SAP)公司的产品。SAP Web Dispatcher是Load Balancing 的核心组件,支持负载均衡,提供反向代理的功能,使得外网用户可以访问到内部应用。SAP Internet Communication Manager是一个 SAP NetWeaver 应用程序服务器的组件。用于接收和发送 Web 请求(HTTP、HTTPS、SMTP)。 SAP We
CVSS Information
N/A
Vulnerability Type
N/A