← Back

J2ee Engine Server Core

j2ee_engine_server_core

Vendor: Sap • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2018-2415
1Sap
2J2ee Engine Server Core
Netweaver Java Web Container And Http Service Engine
Nov 21, 2024
May 9, 2018
N/A· v4
4.7 MEDIUM· v3
4.3 MEDIUM· v2
SAP NetWeaver Application Server Java Web Container and HTTP Service (Engine API, from 7.10 to 7.11, 7.30, 7.31, 7.40, 7.50; J2EE Engine Server Core 7.11, 7.30, 7.31, 7.40, 7.50) do not sufficiently encode user controlle...Show more
SAP NetWeaver Application Server Java Web Container and HTTP Service (Engine API, from 7.10 to 7.11, 7.30, 7.31, 7.40, 7.50; J2EE Engine Server Core 7.11, 7.30, 7.31, 7.40, 7.50) do not sufficiently encode user controlled inputs, resulting in a content spoofing vulnerability when error pages are displayed.Show less