High severity8.8NVD Advisory· Published Jan 9, 2018· Updated Jun 17, 2026
CVE-2018-2363
CVE-2018-2363
Description
SAP NetWeaver, SAP BASIS from 7.00 to 7.02, from 7.10 to 7.11, 7.30, 7.31, 7.40, from 7.50 to 7.52, contains code that allows you to execute arbitrary program code of the user's choice. A malicious user can therefore control the behaviour of the system or can potentially escalate privileges by executing malicious code without legitimate credentials.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- SAP SE/SAP NetWeaverv5Range: 7.00
Patches
Vulnerability mechanics
References
4- www.securityfocus.com/bid/102449nvdThird Party AdvisoryVDB Entry
- blogs.sap.com/2018/01/09/sap-security-patch-day-january-2018/nvdVendor Advisory
- launchpad.support.sap.comnvdPermissions Required
- launchpad.support.sap.comnvdPermissions Required
News mentions
0No linked articles in our index yet.