SAP NetWeaver Application Server Java for Classload Service - version 7.50, does not perform any authentication checks for functionalities that require user identity, resulting in escalation of privileges. This failure has a low impact on confidentiality of the data such that an unassigned user can read non-sensitive server data.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: sap

Published: 2023-03-14T04:38:03.702Z

Updated: 2024-08-02T10:56:04.231Z

Reserved: 2023-01-25T15:46:55.581Z

Link: CVE-2023-24526

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-03-14T05:15:29.347

Modified: 2023-04-11T22:15:08.513

Link: CVE-2023-24526

cve-icon Redhat

No data.