Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
(AV:N/AC:L/AU:N/C:P/I:N/A:NSAP)
Производитель ПО
Наименование ПО
SAP Notes
(1573173-4)
SAP Support Packages
(J2EE_ENGINE_SERVERCORE_710_SP009_000025, J2EE_ENGINE_SERVERCORE_710_SP010_000022, J2EE_ENGINE_SERVERCORE_710_SP011_000003, J2EE_ENGINE_SERVERCORE_710_SP012_000001, J2EE_ENGINE_SERVERCORE_710_SP013_000000, J2EE_ENGINE_SERVERCORE_710_SP999999_999999, J2EE_ENGINE_SERVERCORE_711_SP004_000029, J2EE_ENGINE_SERVERCORE_711_SP005_000020, J2EE_ENGINE_SERVERCORE_711_SP006_000014, J2EE_ENGINE_SERVERCORE_711_SP007_000001, J2EE_ENGINE_SERVERCORE_711_SP008_000000, J2EE_ENGINE_SERVERCORE_711_SP999999_999999, J2EE_ENGINE_SERVERCORE_720_SP002_000024, J2EE_ENGINE_SERVERCORE_720_SP003_000040, J2EE_ENGINE_SERVERCORE_720_SP999999_999999, SAP_J2EE_ENGINE_640_SP024_000012, SAP_J2EE_ENGINE_640_SP025_000019, SAP_J2EE_ENGINE_640_SP026_000017, SAP_J2EE_ENGINE_640_SP027_000011, SAP_J2EE_ENGINE_640_SP028_000003, SAP_J2EE_ENGINE_640_SP999999_999999, SAP_J2EE_ENGINE_CORE_640_SP029_000000, SAP_J2EE_ENGINE_CORE_640_SP999999_999999, SAP_J2EE_ENGINE_CORE_700_SP021_000020, SAP_J2EE_ENGINE_CORE_700_SP022_000009, SAP_J2EE_ENGINE_CORE_700_SP023_000008, SAP_J2EE_ENGINE_CORE_700_SP024_000001, SAP_J2EE_ENGINE_CORE_700_SP025_000000, SAP_J2EE_ENGINE_CORE_700_SP999999_999999, SAP_J2EE_ENGINE_CORE_701_SP006_000026, SAP_J2EE_ENGINE_CORE_701_SP007_000015, SAP_J2EE_ENGINE_CORE_701_SP008_000006, SAP_J2EE_ENGINE_CORE_701_SP009_000001, SAP_J2EE_ENGINE_CORE_701_SP010_000000, SAP_J2EE_ENGINE_CORE_701_SP999999_999999, SAP_J2EE_ENGINE_CORE_702_SP004_000011, SAP_J2EE_ENGINE_CORE_702_SP005_000006, SAP_J2EE_ENGINE_CORE_702_SP006_000009, SAP_J2EE_ENGINE_CORE_702_SP007_000003, SAP_J2EE_ENGINE_CORE_702_SP008_000000, SAP_J2EE_ENGINE_CORE_702_SP999999_999999)
Описание
Information such as the installed products and their version can be discovered through the use of the Web Container or the Http service.This information may be used by an attacker to further target AS Java.
Как исправить
Update AS Java to the latest version. See the SP Patch Level section for details.
Ссылки
