THREAT OPS › CVEs › CVE-2016-2386
CVE-2016-2386 — SAP NetWeaver SQL Injection Vulnerability
SQL injection vulnerability in the UDDI server in SAP NetWeaver J2EE Engine 7.40 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
Vulnerability details
- Affected productsNetWeaver
- KEV remediation due2022-06-30