CVE-2014-8587

Currently unrated

Key Information:

Vendor: SAP
Status: Commoncryptolib; SAPcryptolib; SAPseculib; Hana
Vendor: CVE Published:; 4 November 2014

Summary

SAPCRYPTOLIB before 5.555.38, SAPSECULIB, and CommonCryptoLib before 8.4.30, as used in SAP NetWeaver AS for ABAP and SAP HANA, allows remote attackers to spoof Digital Signature Algorithm (DSA) signatures via unspecified vectors.

References

http://service.sap.com/sap/support/notes/2067859

x_refsource_CONFIRM

http://blog.onapsis.com/sap-security-note-2067859-potenti...

x_refsource_MISC

https://twitter.com/SAP_Gsupport/status/522401681997570048

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Nov 4, 2014