2
0
1
0
Vulnerability Timeline
2 vulnerabilities discovered over time for Netweaver
Severity Distribution
| Description | Vendor / Product | Exploit Status | |||
|---|---|---|---|---|---|
| CVE-2022-28773 | 7.5 | This vulnerability allows an attacker to cause the SAP Web Dispatcher and Internet Communication Manager to crash, resulting in a denial of service that temporarily disrupts access to the application. The attacker needs to send specially crafted requests that trigger uncontrolled recursion, but the system can automatically restart afterward. | sapnetweaver | Theoretical | almost 4 years agoApr 12, 2022 |
| CVE-2021-38163 | 8.8 | This vulnerability allows an attacker, who is already logged in as a regular user, to upload a harmful file that can execute commands on the server with high-level privileges. This means they could access, change, or delete sensitive information, or even take the server offline, making it unusable. | sapnetweaver | Exploit Available | over 4 years agoSep 14, 2021 |
About Sap Netweaver Security
This page provides comprehensive security vulnerability tracking for Sap Netweaver. Our database includes all CVEs affecting this product, updated in real-time from official sources.
Each vulnerability listing includes detailed CVSS severity analysis, exploit availability status, AI-generated explanations, and direct links to official security patches and vendor advisories.
Security Recommendations
- • Always keep Netweaver updated to the latest version
- • Subscribe to security advisories from Sap
- • Monitor this page for new vulnerabilities affecting your version
- • Prioritize patching critical and high severity issues immediately