Unrestricted File Access Vulnerability in SAP NetWeaver J2EE Engine

CVE-2013-7364 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

An unspecified J2EE core service in the J2EE Engine in SAP NetWeaver does not properly restrict access, which allows remote attackers to read and write to arbitrary files via unknown vectors.

Learn more about our Web Application Penetration Testing UK.