The Solution Manager in SAP NetWeaver does not properly restrict access, which allows remote attackers to obtain sensitive information via unspecified vectors.
https://service.sap.com/sap/support/notes/1828885
https://exchange.xforce.ibmcloud.com/vulnerabilities/91093