CVE-2024-27899 | SAP NetWeaver AS Java User Management Engine 7.50 User Admin Application password recovery

Inserito da Angelo Barbosa | Apr 9, 2024 | CVE

A vulnerability was found in SAP NetWeaver AS Java User Management Engine 7.50. It has been declared as critical. This vulnerability affects unknown code of the component User Admin Application. The manipulation leads to weak password recovery.

This vulnerability was named CVE-2024-27899. The attack can be initiated remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-27899 | SAP NetWeaver AS Java User Management Engine 7.50 User Admin Application password recovery

Post correlati

CVE-2023-39368 | Intel CPU Bus Lock Regulator denial of service (intel-sa-00972)

CVE-2024-2704 | Tenda AC10U 15.03.06.49 /goform/SetFirewallCfg formSetFirewallCfg firewallEn stack-based overflow

CVE-2024-4344 | Shield Security Plugin up to 19.1.13 on WordPress cross-site request forgery

CVE-2023-49090 | CarrierWave up to 2.2.4/3.0.4 cross site scripting (GHSA-gxhx-g4fq-49hj)