{"vulnerability": "cve-2023-41367", "sightings": [{"uuid": "02327b36-8c0d-4071-bf32-1fad7e8af20b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-41367", "type": "seen", "source": "https://t.me/arpsyndicate/2340", "content": "#ExploitObserverAlert\n\nCVE-2023-41367\n\nDESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-41367. Due to missing authentication check in webdynpro application, an unauthorized user in SAP NetWeaver (Guided Procedures) - version 7.50, can gain access to admin view of specific function anonymously. On successful exploitation of vulnerability under specific circumstances, attacker can view user\u2019s email address. There is no integrity/availability impact.\n\nFIRST-EPSS: 0.000460000\nNVD-IS: 1.4\nNVD-ES: 3.9", "creation_timestamp": "2024-01-03T18:34:23.000000Z"}]}