CVE-2002-1577

3 documents3 sources
Severity
7.5HIGH
EPSS
0.6%
top 29.56%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
SAP SAP R 3
Timeline
PublishedApr 15
Latest updateApr 30

Description

SAP R/3 2.0B to 4.6D installs several clients with default users and passwords, which allows remote attackers to gain privileges via the (1) SAP*, (2) SAPCPIC, (3) DDIC, (4) EARLYWATCH, or (5) TMSADM accounts.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDsap/sap_r_32.0b_to_4.6d

🔴Vulnerability Details

2
GHSA
GHSA-6cvg-289c-g5fj: SAP R/3 22022-04-30
CVEList
CVE-2002-1577: SAP R/3 22004-03-16
CVE-2002-1577 (HIGH CVSS 7.5) | SAP R/3 2.0B to 4.6D installs sever | cvebase.io