CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

26 matches found

The Hacker News•added 2020/06/03 12:56 p.m.•56 views

Newly Patched SAP ASE Flaws Could Let Attackers Hack Database Servers

A new set of critical vulnerabilities uncovered in SAP's Sybase database software can grant unprivileged attackers complete control over a targeted database and even the underlying operating system in certain scenarios. The six flaws, disclosed by cybersecurity firm Trustwave today, reside in...

9.1CVSS8.2AI score0.01439EPSS

Exploits0

Tenable Nessus•added 2019/12/16 12:0 a.m.•16 views

Sybase ASE Login Possible

Binary data sybaselogin.nbin...

7.3AI score

Exploits0References1

IBM Security Bulletins•added 2018/06/17 3:43 p.m.•19 views

Security Bulletin: Vulnerabilities in IBM Tivoli Composite Application Manager Agent for Sybase ASE with potential for privilege escalation (CVE-2013-5467)

Summary Privilege escalation vulnerability in the IBM Tivoli Composite Application Manager Agent for Sybase ASE could be exploited by a local user to gain elevated privilege of another user. Vulnerability Details CVEID: CVE-2013-5467 Description: Privilege escalation vulnerability could be...

7.2CVSS1.5AI score0.00379EPSS

Exploits6Affected Software1

Cvelist•added 2018/04/24 8:0 p.m.•14 views

CVE-2013-7245

The Backup Server component in SAP Sybase ASE 15.7 before SP51 allows remote attackers to bypass access restrictions and perform database dumps by leveraging failure to validate credentials, aka SAP Security Note 1927859...

7.5AI score0.00254EPSS

Exploits0References2

CVE•added 2018/04/24 8:0 p.m.•39 views

CVE-2013-7245

The CVE-2013-7245 issue affects SAP Sybase ASE 15.7 Backup Server component prior to SP51. The root cause is a failure to validate credentials, allowing remote attackers to bypass access restrictions and perform database dumps. Impact is exposure of data via unauthorized dumps; no exploitation de...

7.5CVSS7.5AI score0.00254EPSS

Exploits0References2Affected Software1

Qualys Blog•added 2018/01/15 9:31 p.m.•22 views

Qualys Policy Compliance Notification: Policy Library Update

Qualys’ library of built-in policies makes it easy to comply with the security standards and regulations that are most commonly used and adhered to. Qualys provides a wide range of policies, including many that have been certified by CIS as well as the ones based on security guidelines from vendo...

6.6AI score

Exploits0

Prion•added 2015/01/22 4:59 p.m.•11 views

Sql injection

SQL injection vulnerability in SAP Adaptive Server Enterprise Sybase ASE allows remote attackers to execute arbitrary SQL commands via unspecified vectors, aka SAP Note 2113333. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

7.5CVSS8.8AI score0.00314EPSS

Exploits0References1

Cvelist•added 2015/01/22 4:0 p.m.•16 views

CVE-2015-1310

8.1AI score0.00314EPSS

Exploits0References1

securityvulns•added 2012/10/29 12:0 a.m.•76 views

Sybase ASE security vulnerabilities

Повышение привилегий, выполнение кода...

1.5AI score

Exploits0References2Affected Software1

securityvulns•added 2012/10/29 12:0 a.m.•47 views

Team SHATTER Security Advisory: Java Operating System command execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 AppSecInc Team SHATTER Security Advisory Java Operating System command execution. Risk Level: High Affected versions: Sybase ASE 15.0, 15.5 and 15.7 Remote exploitable: Yes Credits: This vulnerability was discovered and researched by Esteban Martinez...

0.2AI score

Exploits0

securityvulns•added 2012/10/29 12:0 a.m.•40 views

Team SHATTER Security Advisory: Elevated roles through DBCC

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 AppSecInc Team SHATTER Security Advisory Elevated roles through DBCC Risk Level: High Affected versions: Sybase ASE 15.0, 15.5, 15.7 Remote exploitable: No Credits: This vulnerability was discovered and researched by Martin Rakhmanov of Application...

0.9AI score

Exploits0

seebug.org•added 2012/10/08 12:0 a.m.•29 views

Sybase ASE 15.x Java Command Execution

No description provided by source. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 AppSecInc Team SHATTER Security Advisory Java Operating System command execution. Risk Level: High Affected versions: Sybase ASE 15.0, 15.5 and 15.7 Remote exploitable: Yes Credits: This vulnerability was discovered...

7.1AI score

Exploits0

securityvulns•added 2011/07/06 12:0 a.m.•59 views

bcksrvr format string in Sybase Adaptive Server 15.5

Luigi Auriemma Application: Sybase Adaptive Server http://www.sybase.com/products/databasemanagement/adaptiveserverenterprise Versions: = 15.5 Platforms: Solaris, Windows, Linux, AIX, HP Bug: format string in bcksrvr Exploitation: remote, versus server Date: 27 Jun 2011 found 28 Oct 2010 Author:...

7AI score

Exploits0

Tenable Nessus•added 2010/03/18 12:0 a.m.•9 views

Sybase ASE Server Suspicious Command Detection

Binary data 5456.prm...

7.3AI score

Exploits0

Tenable Nessus•added 2010/03/18 12:0 a.m.•8 views

Sybase ASE Server Suspicious Command Detection

Binary data 5451.prm...

7.3AI score

Exploits0