KLA10526Multiple vulnerabilities in SAP products

2015-04-01T00:00:00
ID KLA10526
Type kaspersky
Reporter Kaspersky Lab
Modified 2019-03-07T00:00:00

Description

Detect date:

04/01/2015

Severity:

Critical

Description:

Multiple serious vulnerabilities have been found in SAP products. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions or obtain sensitive information.

Affected products:

SAP Afaria version 7.0.6001.5
SAP Sybase SQL Anywhere versions 11 and 16
SAP Mobile Platform version 3
SAP NetWeaver version 7.40
SAP KERNEL versions 7.00 and 7.40
SAP EMR Unwired and Clinical Task Tracker
SAP Mobile Platform
SAP NetWeaver Portal 7.31

Solution:

Update to the latest version

Impacts:

OSI

CVE-IDS:

CVE-2015-28205.0Critical
CVE-2015-28195.0Critical
CVE-2015-28185.0Critical
CVE-2015-28175.0Critical
CVE-2015-28167.5Critical
CVE-2015-28156.5Critical
CVE-2015-28146.4Critical
CVE-2015-28135.0Critical
CVE-2015-28125.0Critical
CVE-2015-28115.0Critical