CVE-2016-2386 - SAP NetWeaver SQL Injection Vulnerability

项目:SAP

产品:NetWeaver

添加日期:2022-06-09到期日:2022-06-30最后更新:June 21, 2025

漏洞名称

SAP NetWeaver SQL Injection Vulnerability

描述

SQL injection vulnerability in the UDDI server in SAP NetWeaver J2EE Engine 7.40 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

已知用于勒索软件活动吗?

Unknown

采集行动

Apply updates per vendor instructions.

其他说明

https://nvd.nist.gov/vuln/detail/CVE-2016-2386

相关 CWE