There are multiple Denial-of Service vulnerabilities in SAP NetWeaver Application Server for ABAP and ABAP Platform - versions 740, 750, 751, 752, 753, 754, 755. An unauthorized attacker can use the public SICF service /sap/public/bc/abap to reduce the performance of SAP NetWeaver Application Server ABAP and ABAP Platform.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Netweaver_abap | Sap | 740 (including) | 740 (including) |
| Netweaver_abap | Sap | 750 (including) | 750 (including) |
| Netweaver_abap | Sap | 751 (including) | 751 (including) |
| Netweaver_abap | Sap | 752 (including) | 752 (including) |
| Netweaver_abap | Sap | 753 (including) | 753 (including) |
| Netweaver_abap | Sap | 754 (including) | 754 (including) |
| Netweaver_abap | Sap | 755 (including) | 755 (including) |
| Netweaver_application_server_abap | Sap | 740 (including) | 740 (including) |
| Netweaver_application_server_abap | Sap | 750 (including) | 750 (including) |
| Netweaver_application_server_abap | Sap | 751 (including) | 751 (including) |
| Netweaver_application_server_abap | Sap | 752 (including) | 752 (including) |
| Netweaver_application_server_abap | Sap | 753 (including) | 753 (including) |
| Netweaver_application_server_abap | Sap | 754 (including) | 754 (including) |
| Netweaver_application_server_abap | Sap | 755 (including) | 755 (including) |