CVE-2015-8753

CWE-2643 documents3 sources
Severity
9.1CRITICAL
EPSS
0.5%
top 35.56%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
SAP Afaria
Timeline
PublishedJan 8
Latest updateMay 14

Description

SAP Afaria 7.0.6001.5 allows remote attackers to bypass authorization checks and wipe or lock mobile devices via a crafted request, related to "Insecure signature," aka SAP Security Note 2134905.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:HExploitability: 3.9 | Impact: 5.2

Affected Packages1 packages

NVDsap/afaria7.0.6001.5

🔴Vulnerability Details

2
GHSA
GHSA-2grj-9rmj-333f: SAP Afaria 72022-05-14
CVEList
CVE-2015-8753: SAP Afaria 72016-01-08
CVE-2015-8753 (CRITICAL CVSS 9.1) | SAP Afaria 7.0.6001.5 allows remote | cvebase.io