{"uuid": "6d863dc3-93c7-4b51-96bd-a6ebc1375f8e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2017-12637", "type": "exploited", "source": "https://t.me/DarkWebInformer_CVEAlerts/9005", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2017-12637\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Directory traversal vulnerability in scheduler/ui/js/ffffffffbca41eb4/UIUtilJavaScriptJS in SAP NetWeaver Application Server Java 7.5 allows remote attackers to read arbitrary files via a .. (dot dot) in the query string, as exploited in the wild in August 2017, aka SAP Security Note 2486657.\n\ud83d\udccf Published: 2017-08-07T20:00:00.000Z\n\ud83d\udccf Modified: 2025-03-27T02:55:31.305Z\n\ud83d\udd17 References:\n1. https://web.archive.org/web/20170807202056/http://www.sh0w.top/index.php/archives/7/", "creation_timestamp": "2025-03-27T03:25:45.000000Z"}