← volver
CVE-2019-0327

CVE-2019-0327

EPSS 2.1%
SAP NetWeaver for Java Application Server - Web Container, (engineapi, versions 7.1, 7.2, 7.3, 7.31, 7.4 and 7.5), (servercode, versions 7.2, 7.3, 7.31, 7.4, 7.5), allows an attacker to upload files (including script files) without proper file format validation.
Productos afectados
SAP SE · SAP NetWeaver for Java Application Server - Web Container (engineapi)SAP SE · SAP NetWeaver for Java Application Server - Web Container (servercode)

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://launchpad.support.sap.com/#/notes/2777910https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=523994575http://www.securityfocus.com/bid/109071