Lucene search

MitreCVE-2013-7363

HistoryApr 10, 2014 - 8:55 p.m.

CVE-2013-7363

2014-04-1020:55:06

mitre

web.nvd.nist.gov

cve-2013-7363

sap

solution manager

diagnostics

smd

vulnerability

remote attackers

sensitive information

application configurations

p4 protocol

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.6

Confidence

Low

EPSS

0.011

Percentile

84.4%

JSON

Unspecified vulnerability in the Diagnostics (SMD) agent in SAP Solution Manager allows remote attackers to obtain sensitive information, modify the configuration of applications, and install or remove applications via vectors involving the P4 protocol.

Affected configurations

Nvd

Node

sapsolution_managerMatch-

VendorProductVersionCPE
sapsolution_manager-cpe:2.3:a:sap:solution_manager:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
sap	solution_manager	-	cpe:2.3:a:sap:solution_manager:-:::::::*

References

archives.neohapsis.com/archives/bugtraq/2013-02/0134.html

scn.sap.com/docs/DOC-8218

www.onapsis.com/get.php?resid=adv_onapsis-2013-006

www.onapsis.com/research-advisories.php

service.sap.com/sap/support/notes/1774568

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.6

Confidence

Low

EPSS

0.011

Percentile

84.4%

JSON

Related for CVE-2013-7363