VYPR

J2EE Engine Server Core

by SAP

CVEs (2)

  • CVE-2018-2415MedMay 9, 2018
    risk 0.31cvss 4.7epss 0.01

    SAP NetWeaver Application Server Java Web Container and HTTP Service (Engine API, from 7.10 to 7.11, 7.30, 7.31, 7.40, 7.50; J2EE Engine Server Core 7.11, 7.30, 7.31, 7.40, 7.50) do not sufficiently encode user controlled inputs, resulting in a content spoofing vulnerability…

  • CVE-2010-2347Jun 21, 2010
    risk 0.00cvss epss 0.01

    The Telnet interface in the SAP J2EE Engine Core (SAP-JEECOR) 6.40 through 7.02, and Server Core (SERVERCORE) 7.10 through 7.30 allows remote authenticated users to bypass a security check and conduct SMB relay attacks via unspecified vectors.