6.7 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
50.2%
SAPCRYPTOLIB before 5.555.38, SAPSECULIB, and CommonCryptoLib before 8.4.30, as used in SAP NetWeaver AS for ABAP and SAP HANA, allows remote attackers to spoof Digital Signature Algorithm (DSA) signatures via unspecified vectors.
blog.onapsis.com/sap-security-note-2067859-potential-exposure-to-digital-signature-spoofing/
secunia.com/advisories/57606
service.sap.com/sap/support/notes/2067859
twitter.com/SAP_Gsupport/status/522401681997570048