Lucene search
K

4 matches found

0day.today
0day.today
added 2015/11/23 12:0 a.m.71 views

SAP NetWeaver 7.4 XXE Injection Vulnerability

SAP NetWeaver version 7.4 suffers from an XML external entity injection vulnerability. Application: SAP NetWeaver Versions Affected: SAP NetWeaver 7.4, probably others Vendor URL: http://SAP.com Bugs: XML External Entity Send: 16.04.2015 Reported: 16.04.2015 Vendor response: 16.04.2015 Date of...

6.8CVSS7AI score0.01643EPSS
Exploits2
Packet Storm
Packet Storm
added 2015/11/23 12:0 a.m.53 views

SAP NetWeaver 7.4 XXE Injection

Application: SAP NetWeaver Versions Affected: SAP NetWeaver 7.4, probably others Vendor URL: http://SAP.com Bugs: XML External Entity Send: 16.04.2015 Reported: 16.04.2015 Vendor response: 16.04.2015 Date of Public Advisory: 11.08.2015 Reference: SAP Security Note 2168485 Author: Roman Bezhan...

6.8CVSS0.2AI score0.01643EPSS
Exploits2
CVE
CVE
added 2015/08/24 2:0 p.m.58 views

CVE-2015-6662

CVE-2015-6662 describes an XML External Entity (XXE) vulnerability in SAP NetWeaver Portal 7.4. The exposed component is the SAP NetWeaver Portal XML parser handling admin-import functionality (prtroot/com.sap.portal.landscape.access.LSXMLParse). A crafted XML payload can trigger XXE to read arbi...

6.8CVSS7.1AI score0.01643EPSS
Exploits2References4Affected Software1
erpscan
erpscan
added 2015/04/16 12:0 a.m.42 views

SAP NetWeaver 7.4 - XXE

Application: SAP NetWeaver Portal 7.4 Vendor URL: http://www.sap.com Bugs: XML eXternal Entity Reported: 16.04.2015 Vendor response: 17.04.2015 Date of Public Advisory: 11.08.2015 Reference: SAP Security Note 2168485 Authors: Roman Bezhan ERPScan VULNERABILITY INFORMATION Class: XML External Enti...

6.8CVSS0.5AI score0.01643EPSS
Exploits2
Rows per page
Query Builder