VYPR
Unrated severityNVD Advisory· Published Mar 12, 2024· Updated Sep 26, 2024

Code Injection vulnerability in SAP NetWeaver AS Java (Administrator Log Viewer plug-in)

CVE-2024-22127

Description

SAP NetWeaver Administrator AS Java (Administrator Log Viewer plug-in) - version 7.50, allows an attacker with high privileges to upload potentially dangerous files which leads to command injection vulnerability. This would enable the attacker to run commands which can cause high impact on confidentiality, integrity and availability of the application.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.