CVE-2016-4407 in SAPCRYPTOLIBinformazioni

Riassunto

di MITRE

The DSA algorithm implementation in SAP SAPCRYPTOLIB 5.555.38 does not properly check signatures, which allows remote authenticated users to impersonate arbitrary users via unspecified vectors, aka SAP Security Note 2223008.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

29/04/2016

Divulgazione

13/10/2016

Moderazione

accettato

Voce

VDB-92548

CPE

pronto

CWE

CWE-284 (confermato)

CVSS

6.5 (NVD)

EPSS

0.00956

KEV

Attività

molto basso

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-4407
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-4407
CVE Details	https://www.cvedetails.com/cve/CVE-2016-4407/

◂ Precedente Visione D'ensemble Il prossimo ▸

Want to know what is going to be exploited?

We predict KEV entries!