The unauthenticated attacker in NetWeaver AS Java Logon application - version 7.50, can brute force the login functionality to identify the legitimate user ids. This will have an impact on confidentiality but there is no other impact on integrity or availability.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: sap

Published: 2023-11-14T01:02:56.929Z

Updated: 2024-09-03T14:27:52.474Z

Reserved: 2023-09-11T07:15:13.775Z

Link: CVE-2023-42480

cve-icon Vulnrichment

Updated: 2024-08-02T19:23:39.380Z

cve-icon NVD

Status : Modified

Published: 2023-11-14T01:15:07.907

Modified: 2024-11-21T08:22:38.427

Link: CVE-2023-42480

cve-icon Redhat

No data.