Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Sap Subscribe
Filtered by product Netweaver Java Web Container And Http Service Engine
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-2415 1 Sap 2 J2ee Engine Server Core, Netweaver Java Web Container And Http Service Engine 2019-10-09 4.3 MEDIUM 4.7 MEDIUM
SAP NetWeaver Application Server Java Web Container and HTTP Service (Engine API, from 7.10 to 7.11, 7.30, 7.31, 7.40, 7.50; J2EE Engine Server Core 7.11, 7.30, 7.31, 7.40, 7.50) do not sufficiently encode user controlled inputs, resulting in a content spoofing vulnerability when error pages are displayed.