2 matches found
CVE-2015-2813
CVE-2015-2813: XXE vulnerability in SAP Mobile Platform. The SAP XML parser at /scc/messagebroker/http improperly processes user-supplied DTDs, enabling remote attackers to disclose information, DoS, or read local files. Affected versions include SAP Mobile Platform 2.2 and 2.3 (likely others). R...
CVE-2015-8600
Summary (CVE-2015-8600) : The SysAdminWebTool servlets in SAP Mobile Platform are described as allowing remote attackers to bypass authentication and obtain sensitive information, gain privileges, or have other impact via unknown vectors. The connected CNVD/CNVD-like records corroborate an authen...