Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Missing Authorization check in SAP NetWeaver Application Server for ABAP
Vulnerability Description
Due to missing authorization check in SAP NetWeaver Application Server for ABAP, an authenticated attacker could execute specific ABAP function module to read, modify or insert entries into the database configuration table of the ABAP system. This unauthorized content change could lead to reduced system performance or interruptions. The vulnerability has low impact on the application's integrity and availability, with no effect on confidentiality.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:L
Vulnerability Type
授权机制缺失
Vulnerability Title
SAP NetWeaver Application Server for ABAP 安全漏洞
Vulnerability Description
SAP NetWeaver Application Server for ABAP是德国思爱普(SAP)公司的一个核心应用服务器平台。 SAP NetWeaver Application Server for ABAP存在安全漏洞,该漏洞源于缺少授权检查,可能导致数据库配置表被读取、修改或插入,进而降低系统性能或导致中断。
CVSS Information
N/A
Vulnerability Type
N/A