Описание
The (1) SAP_BASIS and (2) SAP_ABA components 7.00 SP Level 0031 in SAP NetWeaver 2004s might allow remote attackers to spoof IP addresses written to the Security Audit Log via vectors related to the network landscape, aka SAP Security Note 2190621.
Ссылки
- Mailing ListThird Party Advisory
- Permissions RequiredThird Party Advisory
- Mailing ListThird Party Advisory
- Permissions RequiredThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:sap:netweaver:2004s:*:*:*:*:*:*:*
cpe:2.3:a:sap:sap_aba:7.00:sp_level_0031:*:*:*:*:*:*
cpe:2.3:a:sap:sap_basis:7.00:sp_level_0031:*:*:*:*:*:*
EPSS
Процентиль: 52%
0.00291
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-284
Связанные уязвимости
CVSS3: 7.5
github
больше 3 лет назад
The (1) SAP_BASIS and (2) SAP_ABA components 7.00 SP Level 0031 in SAP NetWeaver 2004s might allow remote attackers to spoof IP addresses written to the Security Audit Log via vectors related to the network landscape, aka SAP Security Note 2190621.
EPSS
Процентиль: 52%
0.00291
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-284