CVE-2014-3787Sensitive Information Exposure in SAP Netweaver

CWE-200Sensitive Information Exposure3 documents3 sources
Severity
5.0MEDIUMNVD
EPSS
0.3%
top 45.01%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
SAP Netweaver
Timeline
PublishedMay 19
Latest updateMay 17

Description

SAP NetWeaver 7.20 and earlier allows remote attackers to read arbitrary SAP Central User Administration (SAP CUA) tables via unspecified vectors.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDsap/netweaver7.20+5

🔴Vulnerability Details

2
GHSA
GHSA-jhq4-jvhj-rp83: SAP NetWeaver 72022-05-17
CVEList
CVE-2014-3787: SAP NetWeaver 72014-05-19
CVE-2014-3787 — Sensitive Information Exposure in SAP | cvebase