Code injection

2017-05-2304:29:00

PRIOn knowledge base

www.prio-n.com

0.006 Low

EPSS

Percentile

77.8%

JSON

sinopia, as used in SAP HANA XS 1.00 and 2.00, allows remote attackers to cause a denial of service (assertion failure and service crash) by pushing a package with a filename containing a $ (dollar sign) or % (percent) character, aka SAP Security Note 2407694.

CPENameOperatorVersion
hana_xseq2.00
hana_xseq1.00

CPE	Name	Operator	Version
	hana_xs	eq	2.00
	hana_xs	eq	1.00

References

www.securityfocus.com/bid/96206

erpscan.io/advisories/erpscan-17-008-sap-hana-xs-sinopia-dos/

erpscan.io/press-center/blog/sap-cyber-threat-intelligence-report-february-2017/

0.006 Low

EPSS

Percentile

77.8%

JSON

Related for PRION:CVE-2017-8915