CVE-2016-6146

CWE-200Information Exposure3 documents3 sources
Severity
5.3MEDIUM
EPSS
0.3%
top 44.46%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
SAP Trex
Timeline
PublishedSep 27
Latest updateMay 17

Description

The NameServer in SAP TREX 7.10 Revision 63 allows remote attackers to obtain sensitive TNS information via an unspecified query, aka SAP Security Note 2234226.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages1 packages

NVDsap/trex7.10

🔴Vulnerability Details

2
GHSA
GHSA-2vjx-vmx2-m3h4: The NameServer in SAP TREX 72022-05-17
CVEList
CVE-2016-6146: The NameServer in SAP TREX 72016-09-27