CVE-2015-7828 in HANA DBالمعلومات

الملخص

بحسب MITRE

SAP HANA Database 1.00 SPS10 and earlier do not require authentication, which allows remote attackers to execute arbitrary code or have unspecified other impact via a TrexNet packet to the (1) fcopydir, (2) fmkdir, (3) frmdir, (4) getenv, (5) dumpenv, (6) fcopy, (7) fput, (8) fdel, (9) fmove, (10) fget, (11) fappend, (12) fdir, (13) getTraces, (14) kill, (15) pexec, (16) stop, or (17) pythonexec method, aka SAP Security Note 2165583.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

حجز

14/10/2015

إفشاء

10/11/2015

الاعتدال

تمت الموافقة

إدخال

VDB-79110

EPSS

0.06547

KEV

لا

النشاطات

منخفض جدًا

المصادر

Want to stay up to date on a daily basis?

Enable the mail alert feature now!