CVE-2016-2386: SAP NetWeaver SQL Injection Vulnerability. SQL injection

SAP NetWeaver SQL Injection Vulnerability. SQL injection vulnerability in the UDDI server in SAP NetWeaver J2EE Engine 7.40 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

• CISA KEV-listed (remediation due 2022-06-30)
• EPSS 44.5% (97.6% percentile)

Browse the CVE database

Read the full analysis on IntelFusions