CVE-2014-8312

3 documents3 sources

Severity

3.5LOW

EPSS

0.5%

top 32.03%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

SAP Netweaver Abap

Timeline

PublishedOct 16

Latest updateMay 14

Description

Business Warehouse (BW) in SAP Netweaver AS ABAP 7.31 allows remote authenticated users to obtain sensitive information via a request to the RSDU_CCMS_GET_PROFILE_PARAM RFC function.

CVSS vector

AV:N/AC:M/C:P/I:N/A:NExploitability: 6.8 | Impact: 2.9

Affected Packages1 packages

▶NVDsap/netweaver_abap7.31

🔴Vulnerability Details

GHSA

GHSA-g37p-pm6w-mgfg: Business Warehouse (BW) in SAP Netweaver AS ABAP 7↗2022-05-14

▶

CVEList

CVE-2014-8312: Business Warehouse (BW) in SAP Netweaver AS ABAP 7↗2014-10-16

▶