Security for everyone

CVE-2017-12637 Scanner

Detects 'Directory Traversal' vulnerability in SAP NetWeaver Application Server affects v. 7.5.


Short Info



Single Scan

Single Scan

Can be used by

Asset Owner

Estimated Time

15 sec

Scan only one




SAP NetWeaver Application Server Java 7.5 is a platform that is widely used by businesses to manage their enterprise resource planning (ERP) and customer relationship management (CRM) applications. This software enables organizations to manage their business processes effectively and efficiently. It is also used for managing supply chain operations like procurement, logistics, and inventory management. This application server is designed to provide a centralized infrastructure for running different applications and services on top of it.

The vulnerability code CVE-2017-12637 was detected in SAP NetWeaver Application Server Java 7.5. This vulnerability is caused by a directory traversal flaw in the UIUtilJavaScriptJS located in the scheduler/ui/js/ffffffffbca41eb4 folder. This flaw allows hackers to read arbitrary files by exploiting the ".." character in the query string. Hackers can use this flaw to access confidential data like usernames, passwords, financial records, and other sensitive information stored in the server.

When hackers exploit this vulnerability, it can lead to a data breach, causing serious harm to an organization. A data breach can cause financial losses, damage to the company's reputation, lawsuits, and penalties. The sensitive data accessed by hackers can be sold to competitors, used for identity theft, or sold on the dark web, making it difficult to trace and recover.

Thanks to the pro features of the platform, businesses can quickly and easily learn about vulnerabilities in their digital assets. The platform provides comprehensive tools for scanning, monitoring, and securing digital assets. It also provides timely alerts on new vulnerabilities and patches, enabling businesses to stay ahead of potential threats. With, businesses can take proactive measures to safeguard their digital assets against cyber-attacks.



cyber security services for everyone one. Free security tools, continuous vulnerability scanning and many more.
Try it yourself,
control security posture