logo
Vulnerability feed
CONTRIBUTE

Vulnerability

warn

CVE-2017-12637

Reference to the description:

https://nvd.nist.gov/vuln/detail/CVE-2017-12637

Description:
Directory traversal vulnerability in scheduler/ui/js/ffffffffbca41eb4/UIUtilJavaScriptJS in SAP NetWeaver Application Server Java 7.5 allows remote attackers to read arbitrary files via a .. (dot dot) in the query string, as exploited in the wild in August 2017, aka SAP Security Note 2486657.
Last updated date:
04/20/2021

Reports

alt

ACTIVELY EXPLOITED

Type:
exploitation
Confidence:
HIGH
Date of publishing:
04/20/2021
Reference url to background

https://nvd.nist.gov/vuln/detail/CVE-2017-12637

Vulnerability FeedContributorsAboutBlog

@inTheWild

©2023

Privacy Policy