Lucene search
HistoryOct 03, 2022 - 4:15 p.m.
CVE-2003-0940
cve-2003-0940
directory traversal
vulnerability
sap db
web-tools
nvd
sql injection
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
6.8 Medium
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
74.6%
Directory traversal vulnerability in sqlfopenc for web-tools in SAP DB before 7.4.03.30 allows remote attackers to read arbitrary files via … (dot dot) sequences in a URL.
Affected configurations
Node
sapsap_dbRange≤7.4.03.29
| CPE | Name | Operator | Version |
|---|---|---|---|
| sap:sap_db | sap sap db | le | 7.4.03.29 |
Related
nvd
nvd
CVE-2003-0940
2003-12-15 05:00:00
cvelist
cvelist
CVE-2003-0940
2022-10-03 16:15:46
securityvulns
securityvulns
SAP DB web-tools multiple issues
2003-11-17 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
6.8 Medium
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
74.6%
Related for CVE-2003-0940