CVE-2015-3980

2015-05-1220:00:00

mitre

www.cve.org

AI Score

8.2

Confidence

Low

EPSS

0.001

Percentile

48.9%

JSON

SQL injection vulnerability in the Business Rules Framework (CRM-BF-BRF) in SAP CRM allows attackers to execute arbitrary SQL commands via unspecified vectors, aka SAP Security Note 2097534.

References

www.onapsis.com/blog/analyzing-sap-security-notes-april-2015-edition/

www.securityfocus.com/bid/74624

www.securitytracker.com/id/1032309