VYPR

Sap Message Server

by SAP

CVEs (2)

  • CVE-2007-3624Jul 9, 2007
    risk 0.06cvss epss 0.37

    Heap-based buffer overflow in the Message HTTP Server in SAP Message Server allows remote attackers to execute arbitrary code via a long string in the group parameter to /msgserver/html/group.

  • CVE-2023-37491Aug 8, 2023
    risk 0.00cvss epss 0.00

    The ACL (Access Control List) of SAP Message Server - versions KERNEL 7.22, KERNEL 7.53, KERNEL 7.54, KERNEL 7.77, RNL64UC 7.22, RNL64UC 7.22EXT, RNL64UC 7.53, KRNL64NUC 7.22, KRNL64NUC 7.22EXT, can be bypassed in certain conditions, which may enable an authenticated malicious…