漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Insecure Deserialization in SAP NetWeaver Application Server for Java (Log Viewer )
Vulnerability Description
A critical vulnerability in SAP NetWeaver Application server for Java Log Viewer enables authenticated administrator users to exploit unsafe Java object deserialization. Successful exploitation can lead to full operating system compromise, granting attackers complete control over the affected system. This results in a severe impact on the confidentiality, integrity, and availability of the application and host environment.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Vulnerability Type
可信数据的反序列化
Vulnerability Title
SAP NetWeaver Application Server for Java 代码问题漏洞
Vulnerability Description
SAP NetWeaver Application Server for Java是德国思爱普(SAP)公司的一个基于Java EE的应用服务器。 SAP NetWeaver Application Server for Java存在代码问题漏洞,该漏洞源于不安全的Java对象反序列化,可能导致操作系统完全破解。
CVSS Information
N/A
Vulnerability Type
N/A