exploitDog

CVE-2015-8329

Опубликовано: 24 нояб. 2015

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

SAP Manufacturing Integration and Intelligence (aka MII, formerly xMII) uses weak encryption (Base64 and DES), which allows attackers to conduct downgrade attacks and decrypt passwords via unspecified vectors, aka SAP Security Note 2240274.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:sap:manufacturing_integration_and_intelligence:12.2:*:*:*:*:*:*:*

cpe:2.3:a:sap:manufacturing_integration_and_intelligence:14.0:*:*:*:*:*:*:*

cpe:2.3:a:sap:manufacturing_integration_and_intelligence:15.0:*:*:*:*:*:*:*

EPSS

Процентиль: 36%

0.00151

Низкий

5 Medium

CVSS2

Дефекты

CWE-310

Связанные уязвимости

GHSA-mjfw-3cv2-84gf

github

больше 3 лет назад

SAP Manufacturing Integration and Intelligence (aka MII, formerly xMII) uses weak encryption (Base64 and DES), which allows attackers to conduct downgrade attacks and decrypt passwords via unspecified vectors, aka SAP Security Note 2240274.

EPSS

Процентиль: 36%

0.00151

Низкий

5 Medium

CVSS2

Дефекты

CWE-310