Remote Code Execution Vulnerability in SAP NetWeaver Internet Transaction Server (ITS)

Remote Code Execution Vulnerability in SAP NetWeaver Internet Transaction Server (ITS)

CVE-2017-16682 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

SAP NetWeaver Internet Transaction Server (ITS), SAP Basis from 7.00 to 7.02, 7.30, 7.31, 7.40, from 7.50 to 7.52, allows an attacker with administrator credentials to inject code that can be executed by the application and thereby control the behavior of the application.

Learn more about our Cis Benchmark Audit For Server Software.