Telnet Interface Vulnerability in SAP J2EE Engine and Server Core
CVE-2010-2347

Currently unrated

Key Information:

Vendor: SAP
Status: J2ee Engine Core
Vendor: CVE Published:; 21 June 2010

What is CVE-2010-2347?

The Telnet interface in the SAP J2EE Engine Core and Server Core versions allows authenticated remote users to circumvent security checks. This vulnerability can potentially facilitate SMB relay attacks, posing a significant risk to network integrity and data confidentiality. Exploitation methods remain unspecified, emphasizing the need for immediate assessment and remediation within affected systems.

References

http://www.onapsis.com/resources/get.php?resid=adv_onapsi...

x_refsource_MISC

https://exchange.xforce.ibmcloud.com/vulnerabilities/59502

vdb-entryx_refsource_XF

http://archives.neohapsis.com/archives/fulldisclosure/201...

mailing-listx_refsource_FULLDISC

Timeline

Vulnerability published
Jun 21, 2010
Vulnerability Reserved
Jun 21, 2010