CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2016-9562

SAP NetWeaver AS JAVA 7.4 allows remote attackers to cause a Denial of Service (null pointer exception and icman outage) via an HTTPS request to the sap.com~P4TunnelingApp!web/myServlet URI, aka SAP Security Note 2313835.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.012

EPSS Ranking 77.8%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

http://www.securityfocus.com/bid/92418
http://www.securityfocus.com/bid/95363
https://erpscan.io/advisories/erpscan-16-033-sap-netweaver-java-icman-dos-vulnerability/
http://www.securityfocus.com/bid/92418
http://www.securityfocus.com/bid/95363
https://erpscan.io/advisories/erpscan-16-033-sap-netweaver-java-icman-dos-vulnerability/

Products affected by CVE-2016-9562

Sap » Netweaver Application Server Java » Version: 7.40

cpe:2.3:a:sap:netweaver_application_server_java:7.40

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-9562

Products

Pricing

Contact Us