PT-2017-13558 · Sap · Sap Netweaver As Java

Published

2017-09-19

Updated

2021-04-20

CVE-2017-14581

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions SAP NetWeaver AS JAVA versions 7.0 through 7.5

Description The issue allows remote attackers to cause a denial of service, resulting in a service crash, via a crafted request to the Host Control web service.

Recommendations For SAP NetWeaver AS JAVA versions 7.0 through 7.5, apply the fix provided in SAP Security Note 2389181 to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2017-14581

Affected Products

Sap Netweaver As Java

PT-2017-13558 · Sap · Sap Netweaver As Java

CVE-2017-14581

Related Identifiers

Affected Products

References · 3