Remote Code Execution Vulnerability in SAP NetWeaver UDDI Server
CVE-2019-0351
8.8HIGH
Key Information:
- Vendor
SAP
- Vendor
- CVE Published:
- 14 August 2019
What is CVE-2019-0351?
A remote code execution vulnerability exists in the SAP NetWeaver UDDI Server, allowing attackers to exploit the Services Registry. By injecting malicious code into the server's working memory, attackers can gain unauthorized access and potentially take full control of the application. This could result in the ability to view, modify, or delete sensitive data. Additionally, this exploitation may cause the application to crash, leading to service disruption and loss of functionality.
Affected Version(s)
SAP NetWeaver UDDI Server (Services Registry) < 7.10 < 7.10
SAP NetWeaver UDDI Server (Services Registry) < 7.20 < 7.20
SAP NetWeaver UDDI Server (Services Registry) < 7.30 < 7.30