Sap: >> Netweaver Application Server Java >> 7.40 Security Vulnerabilities
CVE-2016-2386
SQL injection vulnerability in the UDDI server in SAP NetWeaver J2EE Engine 7.40 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, aka SAP Security Note 2101079.
Known exploited
CVSS Score
9.8
EPSS Score
0.443
Published
2016-02-16
Page 5