Cybersecurity Alerts

Actively Exploited Vulnerabilities

← Back to Cybersecurity Alerts

CVE-2016-2388

SAP | NetWeaverAdded 2022-06-09Remediation Deadline 2022-06-30

SAP NetWeaver Information Disclosure Vulnerability

The Universal Worklist Configuration in SAP NetWeaver AS JAVA 7.4 allows remote attackers to obtain sensitive user information via a crafted HTTP request.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-200

References