Privilege Escalation Vulnerability in SAP NetWeaver Application Server Java

Privilege Escalation Vulnerability in SAP NetWeaver Application Server Java

CVE-2019-0389 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

An administrator of SAP NetWeaver Application Server Java (J2EE-Framework), (corrected in versions 7.1, 7.2, 7.3, 7.31, 7.4, 7.5), may change privileges for all or some functions in Java Server, and enable users to execute functions, they are not allowed to execute otherwise.

Learn more about our Cis Benchmark Audit For Server Software.