THREATOPS
THREAT OPSCVEs › CVE-2016-9563

CVE-2016-9563 — SAP NetWeaver XML External Entity (XXE) Vulnerability

CISA KEVExploited: confirmedSAP

SAP NetWeaver Application Server Java Platforms contains an unspecified vulnerability in BC-BMT-BPM-DSK which allows remote, authenticated users to conduct XML External Entity (XXE) attacks.

Vulnerability details