CVE-2016-9563: SAP NetWeaver XML External Entity (XXE) Vulnerability. SAP

SAP NetWeaver XML External Entity (XXE) Vulnerability. SAP NetWeaver Application Server Java Platforms contains an unspecified vulnerability in BC-BMT-BPM-DSK which allows remote, authenticated users to conduct XML External Entity (XXE) attacks.

• CISA KEV-listed (remediation due 2022-05-03)
• EPSS 58.8% (98.3% percentile)

Browse the CVE database

Read the full analysis on IntelFusions