Every CVE whose affected-product data names Sap J2ee Engine, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2018-17861 — CVSS 6.1 (medium): A cross-site scripting (XSS) vulnerability in SAP J2EE Engine/7.01/Portal/EPP allows remote attackers to inject arbitrary web script via…
CVE-2018-17862 — CVSS 6.1 (medium): A cross-site scripting (XSS) vulnerability in SAP J2EE Engine/7.01/Fiori allows remote attackers to inject arbitrary web script via the…
CVE-2018-17865 — CVSS 6.1 (medium): A cross-site scripting (XSS) vulnerability in SAP J2EE Engine 7.01 allows remote attackers to inject arbitrary web script via the wsdlPath…
CVE-2013-7357 — CVSS 5.0 (medium): Unspecified vulnerability in the configuration service in SAP J2EE Engine allows remote attackers to obtain credential information via…