A vulnerability was found in SAP NetWeaver AS Java User Management Engine 7.50. It has been declared as critical. This vulnerability affects unknown code of the component User Admin Application. The manipulation leads to weak password recovery.
This vulnerability was named CVE-2024-27899. The attack can be initiated remotely. There is no exploit available.
It is recommended to apply a patch to fix this issue.