Maxdb Security Vulnerabilities and Issues — Maxdb CVE List

Lucene search

SapMaxdb

4 matches found

CVE•added 2008/01/12 2:46 a.m.•51 views

CVE-2008-0244

SAP MaxDB 7.6.03 build 007 and earlier allows remote attackers to execute arbitrary commands via "&&" and other shell metacharacters in exec_sdbinfo and other unspecified commands, which are executed when MaxDB invokes cons.exe.

10CVSS7.4AI score0.89824EPSS

CVE•added 2008/03/11 11:44 p.m.•41 views

CVE-2008-0307

Integer signedness error in vserver in SAP MaxDB 7.6.0.37, and possibly other versions, allows remote attackers to execute arbitrary code via unknown vectors that trigger heap corruption.

9.3CVSS7.6AI score0.04226EPSS

CVE•added 2008/08/01 2:41 p.m.•41 views

CVE-2008-1810

Untrusted search path vulnerability in dbmsrv in SAP MaxDB 7.6.03.15 on Linux allows local users to gain privileges via a modified PATH environment variable.

4.4CVSS6.5AI score0.00069EPSS

CVE•added 2008/03/11 11:44 p.m.•39 views

CVE-2008-0306

sdbstarter in SAP MaxDB 7.6.0.37, and possibly other versions, allows local users to execute arbitrary commands by using unspecified environment variables to modify configuration settings.

6.9CVSS7.1AI score0.00051EPSS