Lucene search

CVE-2013-3319

🗓️ 16 Aug 2013 17:05:55Reported by mitreType

cve🔗 web.nvd.nist.gov👁 45 Views🌐 WEB

The GetComputerSystem method in SAP Netweaver 7.03 allows remote attackers to obtain sensitive information via a crafted SOAP request

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
Tenable Nessus	SAP Host Agent SOAP Web Service Information Disclosure (SAP Note 1816536)	3 Feb 201400:00	–	nessus
Prion	Design/Logic Flaw	16 Aug 201317:55	–	prion
Circl	CVE-2013-3319	6 Feb 202503:13	–	circl
Cvelist	CVE-2013-3319	16 Aug 201317:00	–	cvelist
NVD	CVE-2013-3319	16 Aug 201317:55	–	nvd
Metasploit	SAP Host Agent Information Disclosure	22 Jul 201317:36	–	metasploit
Packet Storm	SAP Host Agent Information Disclosure	1 Sep 202400:00	–	packetstorm

Nvd

Node

sap netweaverMatch7.03

Source	Link
service	www.service.sap.com/sap/support/notes/1816536
scn	www.scn.sap.com/docs/DOC-8218
labs	www.labs.integrity.pt/advisories/cve-2013-3319/
secunia	www.secunia.com/advisories/54277
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/85905

Parameter	Position	Path	Description	CWE
provider	request body	/	The endpoint allows remote attackers to obtain sensitive information from SAP HostControl by sending a crafted SOAP request.	CWE-200

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

16 Aug 2013 17:55Current

6.2Medium risk

Vulners AI Score6.2

CVSS25

EPSS0.29793

CWE-200