Security Advisory

CVE-2016-7437

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2016-10-13 14:00:00

Last updated 2024-08-06 01:57:47

Assigner mitre

State PUBLISHED

Description

SAP Netweaver 7.40 improperly logs (1) DUI and (2) DUJ events in the SAP Security Audit Log as non-critical, which might allow local users to hide rejected attempts to execute RFC function callbacks by leveraging filtering of non-critical events in audit analysis reports, aka SAP Security Note 2252312.

← Browse all CVEs View on cve.org ↗