/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PreviewSymptom
- You receive Vulnerability for Knoa - Insecure Java JMX Configuration
- Report Findings:
The Java Remote Method Invocation (RMI) interface is exposed, allowing for remote
unauthenticated remote command execution. An attacker who is able to interact with this
interface can gain NT AUTHORITY\SYSTEM level privileges on the affected host.
Report Recommendations: Restrict access to the Java RMI instance based on the principal of least privilege. If the Java RMI interface does not need to be accessed by remote hosts, bind the interface to localhost to prevent external connections.
Read more...
Environment
SAP User Experience Managment by Knoa, Enterprise Edition
Product
SAP User Experience Management by Knoa, cloud edition 7.1
Keywords
KBA , XX-PART-KNO , Knoa Experience and Performance Manager , Problem
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.
/support/notes/service/facebook.svg)
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)