The J2EE Engine in SAP NetWeaver 6.40, 7.02, and earlier allows remote attackers to redirect users to arbitrary web sites, conduct phishing attacks, and obtain sensitive information (cookies and SAPPASSPORT) via unspecified vectors.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2013-11-19T19:00:00
Updated: 2024-08-06T17:46:23.716Z
Reserved: 2013-11-19T00:00:00
Link: CVE-2013-6814
Vulnrichment
No data.
NVD
Status : Modified
Published: 2013-11-20T14:12:30.913
Modified: 2018-12-10T19:29:01.170
Link: CVE-2013-6814
Redhat
No data.