Lucene search

[email protected]CVE-2013-6818

HistoryNov 20, 2013 - 2:12 p.m.

CVE-2013-6818

2013-11-2014:12:30

CWE-264

[email protected]

web.nvd.nist.gov

cve-2013-6818

sap

netweaver

logviewer

windows

remote attackers

access restrictions

6.9 Medium

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.007 Low

EPSS

Percentile

80.2%

JSON

SAP NetWeaver Logviewer 6.30, when running on Windows, allows remote attackers to bypass intended access restrictions via unspecified vectors.

Affected configurations

NVD

Node

sapnetweaver_logviewerMatch6.30---windows

CPENameOperatorVersion
sap:netweaver_logviewersap netweaver logviewereq6.30

CPE	Name	Operator	Version
sap:netweaver_logviewer	sap netweaver logviewer	eq	6.30

References

scn.sap.com/docs/DOC-8218

erpscan.io/advisories/dsecrg-13-008-sap-netweaver-logviewer-security-check-bypass/

service.sap.com/sap/support/notes/1685106

6.9 Medium

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.007 Low

EPSS

Percentile

80.2%

JSON

Related for CVE-2013-6818

nvd1 cvelist1 prion1