Lucene search

[email protected]CVE-2013-6817

HistoryNov 20, 2013 - 2:12 p.m.

CVE-2013-6817

2013-11-2014:12:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2013-6817

saprouter

buffer overflow

denial of service

remote attackers

arbitrary code

nvd

8.9 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.034 Low

EPSS

Percentile

91.5%

JSON

Heap-based buffer overflow in SAP Network Interface Router (SAProuter) 7.30 allows remote attackers to cause a denial of service and execute arbitrary code via crafted NI Route messages.

CPENameOperatorVersion
sap:network_interface_routersap network interface routereq7.30

CPE	Name	Operator	Version
sap:network_interface_router	sap network interface router	eq	7.30

References

scn.sap.com/docs/DOC-8218

erpscan.io/advisories/dsecrg-13-013-saprouter-heap-overflow/

service.sap.com/sap/support/notes/1820666

8.9 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.034 Low

EPSS

Percentile

91.5%

JSON

Related for CVE-2013-6817

cvelist1 prion1