← back
CVE-2015-2817

CVE-2015-2817

EPSS 2.4%
The SAP Management Console in SAP NetWeaver 7.40 allows remote attackers to obtain sensitive information via the ReadProfile parameters, aka SAP Security Note 2091768.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/132359/SAP-Management-Console-Information-Disclosure.htmlhttp://seclists.org/fulldisclosure/2015/Jun/65https://erpscan.io/advisories/erpscan-15-007-sap-management-console-readprofile-parameters-information-disclosure/http://www.securityfocus.com/archive/1/535829/100/800/threadedhttp://www.securityfocus.com/bid/73705