Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2014-8590
Deferred
More InfoOfficial Page
Source-cve@mitre.org
View Known Exploited Vulnerability (KEV) details
Published At-04 Nov, 2014 | 15:55
Updated At-12 Apr, 2025 | 10:46

XML external entity (XXE) vulnerability in the Web Service Navigator in SAP NetWeaver Application Server (AS) Java allows remote attackers to access arbitrary files via a crafted request.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary2.04.3MEDIUM
AV:N/AC:M/Au:N/C:P/I:N/A:N
CPE Matches
SAP SE
sap
>>netweaver_java_application_server>>-
cpe:2.3:a:sap:netweaver_java_application_server:-:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
NVD-CWE-OtherPrimarynvd@nist.gov
Evaluator Description
CWE-611: Improper Restriction of XML External Entity Reference ('XXE')
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
http://blog.onapsis.com/analyzing-sap-security-notes-october-2014-edition/cve@mitre.org
N/A
http://www.securityfocus.com/bid/71023cve@mitre.org
N/A
https://erpscan.io/advisories/erpscan-14-015-sap-netweaver-as-java-xxe/cve@mitre.org
N/A
https://erpscan.io/press-center/blog/sap-critical-patch-update-october-2014/cve@mitre.org
N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/98581cve@mitre.org
N/A
https://service.sap.com/sap/support/notes/2045176cve@mitre.org
N/A
http://blog.onapsis.com/analyzing-sap-security-notes-october-2014-edition/af854a3a-2127-422b-91ae-364da2661108
N/A
http://www.securityfocus.com/bid/71023af854a3a-2127-422b-91ae-364da2661108
N/A
https://erpscan.io/advisories/erpscan-14-015-sap-netweaver-as-java-xxe/af854a3a-2127-422b-91ae-364da2661108
N/A
https://erpscan.io/press-center/blog/sap-critical-patch-update-october-2014/af854a3a-2127-422b-91ae-364da2661108
N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/98581af854a3a-2127-422b-91ae-364da2661108
N/A
https://service.sap.com/sap/support/notes/2045176af854a3a-2127-422b-91ae-364da2661108
N/A
Change History
0Changes found
Details not found