← back
CVE-2013-6815

CVE-2013-6815

EPSS 1.7%
The SHSTI_UPLOAD_XML function in the Application Server for ABAP (AS ABAP) in SAP NetWeaver 7.31 and earlier allows remote attackers to cause a denial of service via unspecified vectors, related to an XML External Entity (XXE) issue.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://scn.sap.com/docs/DOC-8218http://secunia.com/advisories/55620https://erpscan.io/advisories/erpscan-13-020-sap-netweaver-shsti_upload_xml-xxe/https://service.sap.com/sap/support/notes/1890819