Sap: >> Netweaver Application Server Java >> 7.20 Security Vulnerabilities
CVE-2016-2388
The Universal Worklist Configuration in SAP NetWeaver AS JAVA 7.4 allows remote attackers to obtain sensitive user information via a crafted HTTP request, aka SAP Security Note 2256846.
Known exploited
CVSS Score
5.3
EPSS Score
0.582
Published
2016-02-16
Page 4