CVE-2026-44757
- EPSS 0.15%
- Veröffentlicht 09.06.2026 00:21:50
- Zuletzt bearbeitet 09.06.2026 02:08:28
SAP Wily Introscope Enterprise Manager allows an unauthenticated attacker to craft a specially crafted URL. Under certain conditions, when accessed by a victim, the injected script could execute in the user�s browser within the context of the applica...
CVE-2026-0500
- EPSS 0.35%
- Veröffentlicht 13.01.2026 01:13:57
- Zuletzt bearbeitet 22.01.2026 18:47:22
Due to the usage of vulnerable third party component in SAP Wily Introscope Enterprise Manager (WorkStation), an unauthenticated attacker could create a malicious JNLP (Java Network Launch Protocol) file accessible by a public facing URL. When a vict...
- EPSS 6.41%
- Veröffentlicht 15.10.2020 02:15:12
- Zuletzt bearbeitet 21.11.2024 05:35:35
SAP Solution Manager and SAP Focused Run (update provided in WILY_INTRO_ENTERPRISE 9.7, 10.1, 10.5, 10.7), allows an attacker to modify a cookie in a way that OS commands can be executed and potentially gain control over the host running the CA Intro...