Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
(AV:N/AC:L/AU:N/C:C/I:C/A:CSAP)
Производитель ПО
Наименование ПО
SAP Notes
(1682613-3)
SAP Support Packages
(J2EE_ENGINE_SERVERCORE_710_SP011_000014, J2EE_ENGINE_SERVERCORE_710_SP012_000015, J2EE_ENGINE_SERVERCORE_710_SP013_000006, J2EE_ENGINE_SERVERCORE_710_SP014_000002, J2EE_ENGINE_SERVERCORE_710_SP015_000000, J2EE_ENGINE_SERVERCORE_710_SP999999_999999, J2EE_ENGINE_SERVERCORE_711_SP006_000032, J2EE_ENGINE_SERVERCORE_711_SP007_000014, J2EE_ENGINE_SERVERCORE_711_SP008_000009, J2EE_ENGINE_SERVERCORE_711_SP009_000002, J2EE_ENGINE_SERVERCORE_711_SP010_000000, J2EE_ENGINE_SERVERCORE_711_SP999999_999999, J2EE_ENGINE_SERVERCORE_720_SP004_000045, J2EE_ENGINE_SERVERCORE_720_SP005_000022, J2EE_ENGINE_SERVERCORE_720_SP006_000011, J2EE_ENGINE_SERVERCORE_720_SP007_000001, J2EE_ENGINE_SERVERCORE_720_SP008_000000, J2EE_ENGINE_SERVERCORE_720_SP999999_999999, J2EE_ENGINE_SERVERCORE_730_SP001_000015, J2EE_ENGINE_SERVERCORE_730_SP002_000021, J2EE_ENGINE_SERVERCORE_730_SP003_000019, J2EE_ENGINE_SERVERCORE_730_SP004_000010, J2EE_ENGINE_SERVERCORE_730_SP005_000012, J2EE_ENGINE_SERVERCORE_730_SP007_000001, J2EE_ENGINE_SERVERCORE_730_SP008_000000, J2EE_ENGINE_SERVERCORE_730_SP999999_999999, J2EE_ENGINE_SERVERCORE_731_SP001_000009, J2EE_ENGINE_SERVERCORE_731_SP002_000004, J2EE_ENGINE_SERVERCORE_731_SP003_000002, J2EE_ENGINE_SERVERCORE_731_SP004_000000, J2EE_ENGINE_SERVERCORE_731_SP999999_999999, SAP_J2EE_ENGINE_640_SP026_000031, SAP_J2EE_ENGINE_640_SP027_000027, SAP_J2EE_ENGINE_640_SP028_000015, SAP_J2EE_ENGINE_640_SP029_000009, SAP_J2EE_ENGINE_640_SP030_000001, SAP_J2EE_ENGINE_640_SP031_000000, SAP_J2EE_ENGINE_640_SP999999_999999, SAP_J2EE_ENGINE_CORE_640_SP031_000000, SAP_J2EE_ENGINE_CORE_640_SP999999_999999, SAP_J2EE_ENGINE_CORE_700_SP024_000016, SAP_J2EE_ENGINE_CORE_700_SP025_000014, SAP_J2EE_ENGINE_CORE_700_SP026_000012, SAP_J2EE_ENGINE_CORE_700_SP027_000001, SAP_J2EE_ENGINE_CORE_700_SP028_000000, SAP_J2EE_ENGINE_CORE_700_SP999999_999999, SAP_J2EE_ENGINE_CORE_701_SP009_000018, SAP_J2EE_ENGINE_CORE_701_SP010_000017, SAP_J2EE_ENGINE_CORE_701_SP011_000014, SAP_J2EE_ENGINE_CORE_701_SP012_000001, SAP_J2EE_ENGINE_CORE_701_SP013_000000, SAP_J2EE_ENGINE_CORE_701_SP999999_999999, SAP_J2EE_ENGINE_CORE_702_SP007_000020, SAP_J2EE_ENGINE_CORE_702_SP008_000019, SAP_J2EE_ENGINE_CORE_702_SP009_000018, SAP_J2EE_ENGINE_CORE_702_SP010_000013, SAP_J2EE_ENGINE_CORE_702_SP011_000014, SAP_J2EE_ENGINE_CORE_702_SP012_000000, SAP_J2EE_ENGINE_CORE_702_SP013_000000, SAP_J2EE_ENGINE_CORE_702_SP999999_999999)
Описание
One of the core services does not contain authorization checks for checking an unauthenticated user's authorization to access some of its functions. This may result in undesired system behavior.
Как исправить
Apply Patch Level for your version and service pack that contains all the fixes attached to this note. For details, check validity section.
Ссылки