← back
CVE-2016-6147

CVE-2016-6147

EPSS 4.5%
An unspecified interface in SAP TREX 7.10 Revision 63 allows remote attackers to execute arbitrary OS commands with SIDadm privileges via unspecified vectors, aka SAP Security Note 2234226.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/138446/SAP-TREX-7.10-Revision-63-Remote-Command-Execution.htmlhttp://seclists.org/fulldisclosure/2016/Aug/94https://www.onapsis.com/blog/analyzing-sap-security-notes-february-2016https://www.onapsis.com/research/security-advisories/sap-trex-remote-command-execution-0http://www.securityfocus.com/bid/92066