CVE-2017-16682

Summary

SAP NetWeaver Internet Transaction Server (ITS), SAP Basis from 7.00 to 7.02, 7.30, 7.31, 7.40, from 7.50 to 7.52, allows an attacker with administrator credentials to inject code that can be executed by the application and thereby control the behavior of the application.

Affected Software

VendorProductVersion RangeStatus
SAPSAP NetWeaver Internet Transaction Server (ITS)from 7.00 to 7.02, 7.30, 7.31, 7.40, from 7.50 to 7.52affected

Weaknesses

  • Code Injection

ADP Enrichment

CVE Program Container

Additional References

References