CVE-2016-2388: SAP NetWeaver Information Disclosure Vulnerability. The

SAP NetWeaver Information Disclosure Vulnerability. The Universal Worklist Configuration in SAP NetWeaver AS JAVA 7.4 allows remote attackers to obtain sensitive user information via a crafted HTTP request.

• CISA KEV-listed (remediation due 2022-06-30)
• EPSS 67.8% (98.6% percentile)

Browse the CVE database

Read the full analysis on IntelFusions