CVE-2003-0945

3 documents3 sources

Severity

7.5HIGH

EPSS

0.9%

top 24.34%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

SAP SAP DB

Timeline

PublishedDec 15

Latest updateApr 29

Description

The Web Database Manager in web-tools for SAP DB before 7.4.03.30 generates predictable session IDs, which allows remote attackers to conduct unauthorized activities.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

▶NVDsap/sap_db7.4.03.29

🔴Vulnerability Details

GHSA

GHSA-5rp8-286r-gvx9: The Web Database Manager in web-tools for SAP DB before 7↗2022-04-29

▶

CVEList

CVE-2003-0945: The Web Database Manager in web-tools for SAP DB before 7↗2003-11-21

▶