Known Vulnerabilities for Netweaver Application Server Java by Sap

Listed below are 10 of the newest known vulnerabilities associated with the software "Netweaver Application Server Java" by "Sap".

These CVEs are retrieved based on exact matches on listed software and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2021-37535 SAP NetWeaver Application Server Java (JMS Connector Service) - versions 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, does not perform... Not Provided 2021-09-14 2021-09-14
CVE-2021-33689 When user with insufficient privileges tries to access any application in SAP NetWeaver Administrator (Administrator applicat... 4.3 - MEDIUM 2021-07-14 2021-07-16
CVE-2021-33687 SAP NetWeaver AS JAVA (Enterprise Portal), versions - 7.10, 7.20, 7.30, 7.31, 7.40, 7.50 reveals sensitive information in one... 4.9 - MEDIUM 2021-07-14 2021-07-16
CVE-2021-33670 SAP NetWeaver AS for Java (Http Service Monitoring Filter), versions - 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, allows an at... 7.5 - HIGH 2021-07-14 2021-07-16
CVE-2021-27601 SAP NetWeaver AS Java (Applications based on HTMLB for Java) allows a basic-level authorized attacker to store a malicious fi... 5.4 - MEDIUM 2021-04-13 2021-04-20
CVE-2021-27598 SAP NetWeaver AS JAVA (Customer Usage Provisioning Servlet), versions - 7.31, 7.40, 7.50, allows an attacker to read some sta... 5.3 - MEDIUM 2021-04-13 2021-04-20
CVE-2021-21492 SAP NetWeaver Application Server Java(HTTP Service), versions - 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, does not sufficient... 4.3 - MEDIUM 2021-04-13 2021-04-20
CVE-2021-21491 SAP Netweaver Application Server Java (Applications based on WebDynpro Java) versions 7.00, 7.10, 7.11, 7.20, 7.30, 7.31, 7.4... 6.1 - MEDIUM 2021-03-10 2021-03-17
CVE-2021-21485 An unauthorized attacker may be able to entice an administrator to invoke telnet commands of an SAP NetWeaver Application Ser... 6.5 - MEDIUM 2021-04-13 2021-04-21
CVE-2020-6190 Certain vulnerable endpoints in SAP NetWeaver AS Java (Heap Dump Application), versions 7.30, 7.31, 7.40, 7.50, provide valua... 5.8 - MEDIUM 2020-02-12 2020-02-19

Known Affected Configurations (CPE V2.3)

Type Vendor Product Version Update Edition Language
ApplicationSapNetweaver Application Server Java7.5AllAllAll
ApplicationSapNetweaver Application Server Java7.4AllAllAll
ApplicationSapNetweaver Application Server Java7.3AllAllAll
ApplicationSapNetweaver Application Server Java7.2AllAllAll
ApplicationSapNetweaver Application Server Java7.11AllAllAll
ApplicationSapNetweaver Application Server Java7.1AllAllAll
ApplicationSapNetweaver Application Server Java7.05AllAllAll
ApplicationSapNetweaver Application Server Java7.02AllAllAll
ApplicationSapNetweaver Application Server Java7.01AllAllAll
ApplicationSapNetweaver Application Server Java7.00AllAllAll

Popular searches for Netweaver Application Server Java

SAP Help Portal

help.sap.com/viewer/index

SAP Help Portal

help.sap.com help.sap.com/search/sap_trex.jsp service.sap.com/instguides help.sap.com help.sap.com/em92?current=em service.sap.com/instguides help.sap.com/viewer help.sap.com/search help.sap.com/home HTTP cookie SAP SE Privacy policy Website Personalization Opt-out Videotelephony SAP ERP Information Content (media) Web traffic Web portal Accept (band) Web browser Second audio program Performance improvement Web content Web navigation Internet traffic Portal (video game)

AS Java Home - SAP Netweaver Application Server Java - Community Wiki

wiki.scn.sap.com/wiki/display/ASJAVA/AS+Java+Home

I EAS Java Home - SAP Netweaver Application Server Java - Community Wiki Netweaver Application Server Java is part of the NetWeaver Application Q O M Platform. It provides the complete infrastructure for deploying and running Java applications. NetWeaver AS Java M K I support of ECDHE and ECDSA algorithms for outbound TLS connections, see SAP = ; 9 Note. 2708581 - ECC Support for Outbound Connections in SAP NW AS Java

Java (programming language) SAP NetWeaver SAP SE Application server Wiki Application software Java Community Process Transport Layer Security Elliptic Curve Digital Signature Algorithm Elliptic-curve Diffie–Hellman SAP ERP Algorithm Computing platform Software deployment Autonomous system (Internet) Java Platform, Standard Edition Java (software platform) Software maintenance Technical support IBM Connections

© CVE.report 2021 Twitter Nitter Twitter Viewer |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report