CVE-2015-2816

CWE-284Improper Access Control3 documents3 sources
Severity
7.5HIGH
EPSS
0.8%
top 26.74%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
SAP Afaria
Timeline
PublishedApr 1
Latest updateMay 14

Description

The XcListener in SAP Afaria 7.0.6001.5 does not properly restrict access, which allows remote attackers to have unspecified impact via a crafted request, aka SAP Security Note 2134905.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDsap/afaria7.0.6001.5

🔴Vulnerability Details

2
GHSA
GHSA-76vq-h9rh-v5xv: The XcListener in SAP Afaria 72022-05-14
CVEList
CVE-2015-2816: The XcListener in SAP Afaria 72015-04-01
CVE-2015-2816 (HIGH CVSS 7.5) | The XcListener in SAP Afaria 7.0.60 | cvebase.io