CVE-2022-29615
Description
SAP NetWeaver Developer Studio (NWDS) - version 7.50, is based on Eclipse, which contains the logging framework log4j in version 1.x. The application's confidentiality and integrity could have a low impact due to the vulnerabilities associated with version 1.x.
References
Vendor Advisory
Permissions RequiredVendor Advisory
CvssV3 impact
Could not find any metrics
CvssV2 impact
AccessComplexity | LOW |
ConfidentialityImpact | PARTIAL |
AvailabilityImpact | NONE |
IntegrityImpact | PARTIAL |
BaseScore | 3.5999999046325684 |
VectorString | AV:L/AC:L/Au:N/C:P/I:P/A:N |
Version | 2.0 |
AccessVector | LOCAL |
Authentication | NONE |