Sign-up

ID

VAR-201704-1647


TITLE

SAP NetWeaver ADBC Demo Programs Remote Authorization Bypass Vulnerability

Trust: 0.3

sources: BID: 97568

DESCRIPTION

SAP NetWeaver is prone to an authorization-bypass vulnerability. Attackers can exploit this issue to gain unauthorized access and obtain sensitive information or elevate privileges. This may aid in further attacks.

Trust: 0.3

sources: BID: 97568

AFFECTED PRODUCTS

vendor:sapmodel:netweaverscope:eqversion:0

Trust: 0.3

sources: BID: 97568

THREAT TYPE

network

Trust: 0.3

sources: BID: 97568

TYPE

Input Validation Error

Trust: 0.3

sources: BID: 97568

EXTERNAL IDS

db:BIDid:97568

Trust: 0.3

sources: BID: 97568

REFERENCES

url:http://www.sap.com/

Trust: 0.3

url:https://service.sap.com/sap/support/notes/2423486

Trust: 0.3

url:https://blogs.sap.com/2017/04/11/sap-security-patch-day-april-2017/

Trust: 0.3

url:https://blogs.sap.com/2017/05/09/sap-security-patch-day-may-2017/

Trust: 0.3

sources: BID: 97568

CREDITS

The vendor reported this issue.

Trust: 0.3

sources: BID: 97568

SOURCES

db:BIDid:97568

LAST UPDATE DATE

2022-05-17T01:52:37.101000+00:00


SOURCES UPDATE DATE

db:BIDid:97568date:2017-05-23T16:23:00

SOURCES RELEASE DATE

db:BIDid:97568date:2017-04-11T00:00:00