The Host Control web service in SAP NetWeaver AS JAVA 7.0 through 7.5 allows remote attackers to cause a denial of service (service crash) via a crafted request, aka SAP Security Note 2389181.
References
Link | Resource |
---|---|
https://erpscan.io/advisories/erpscan-17-030-sap-hostcontrol-remote-dos/ | Third Party Advisory |
Configurations
History
20 Apr 2021, 19:22
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:sap:netweaver:7.10:*:*:*:*:*:*:* cpe:2.3:a:sap:netweaver:7.3:ehp1:*:*:*:*:*:* cpe:2.3:a:sap:netweaver:7.02:*:*:*:*:*:*:* cpe:2.3:a:sap:netweaver:7.01:*:*:*:*:*:*:* cpe:2.3:a:sap:netweaver:7.0:ehp3:*:*:*:*:*:* cpe:2.3:a:sap:netweaver:7.03:*:*:*:*:*:*:* cpe:2.3:a:sap:netweaver:7.31:*:*:*:*:*:*:* cpe:2.3:a:sap:netweaver:7.0:ehp1:*:*:*:*:*:* cpe:2.3:a:sap:netweaver:7.0:ehp2:*:*:*:*:*:* cpe:2.3:a:sap:netweaver:7.30:*:*:*:*:*:*:* cpe:2.3:a:sap:netweaver:7.20:*:*:*:*:*:*:* cpe:2.3:a:sap:netweaver:7.40:*:*:*:*:*:*:* |
cpe:2.3:a:sap:netweaver_application_server_java:*:*:*:*:*:*:*:* |
References | (MISC) https://erpscan.io/advisories/erpscan-17-030-sap-hostcontrol-remote-dos/ - Third Party Advisory | |
CWE | NVD-CWE-noinfo |
Information
Published : 2017-09-19 16:29
Updated : 2023-12-10 12:15
NVD link : CVE-2017-14581
Mitre link : CVE-2017-14581
CVE.ORG link : CVE-2017-14581
JSON object : View
Products Affected
sap
- netweaver_application_server_java
CWE