漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Insecure File Operations vulnerability in SAP NetWeaver Application Server for ABAP (Migration Workbench)
Vulnerability Description
Migration Workbench (DX Workbench) in SAP NetWeaver Application Server for ABAP fails to trigger a malware scan when an attacker with administrative privileges uploads files to the application server. An attacker could leverage this and upload a malicious file into the system. This results in a low impact on the integrity of the application.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N
Vulnerability Type
危险类型文件的不加限制上传
Vulnerability Title
SAP NetWeaver Application Server for ABAP 代码问题漏洞
Vulnerability Description
SAP NetWeaver Application Server for ABAP是德国思爱普(SAP)公司的一个核心应用服务器平台。 SAP NetWeaver Application Server for ABAP存在代码问题漏洞,该漏洞源于管理员上传文件时未触发恶意软件扫描,可能导致上传恶意文件。
CVSS Information
N/A
Vulnerability Type
N/A