Lucene search
MitreCVE-2015-2812HistoryApr 01, 2015 - 2:59 p.m.
CVE-2015-2812
2015-04-0114:59:11
mitre
web.nvd.nist.gov
26
cve-2015-2812
xxe
sap
netweaver portal
security vulnerability
nvd
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
6.7
Confidence
Low
EPSS
0.004
Percentile
73.8%
XML external entity (XXE) vulnerability in XMLValidationComponent in SAP NetWeaver Portal 7.31.201109172004 allows remote attackers to send requests to intranet servers via crafted XML, aka SAP Security Note 2093966.
Affected configurations
Node
sapnetweaver_enterprise_portalMatch7.31
| Vendor | Product | Version | CPE |
|---|---|---|---|
| sap | netweaver_enterprise_portal | 7.31 | cpe:2.3:a:sap:netweaver_enterprise_portal:7.31:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2015-2812
2015-04-01 14:59:11
securityvulns
securityvulns
[ERPSCAN-15-004] SAP NetWeaver Portal XMLValidationComponent - XXE
2015-06-29 00:00:00
SAP NetWeather multiple security vulnerabilities
2015-06-29 00:00:00
cvelist
cvelist
CVE-2015-2812
2015-04-01 14:00:00
erpscan
erpscan
SAP NetWeaver Portal XMLValidationComponent - XXE
2014-06-11 00:00:00
prion
prion
Xxe
2015-04-01 14:59:00
kaspersky
kaspersky
KLA10526 Multiple vulnerabilities in SAP products
2015-04-01 00:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
6.7
Confidence
Low
EPSS
0.004
Percentile
73.8%
Related for CVE-2015-2812