CVE-2015-2814

Currently unrated

Key Information:

Vendor: SAP
Status: Clinical Task Tracker; Emr Unwired
Vendor: CVE Published:; 1 April 2015

Summary

SAP EMR Unwired (com.sap.mobile.healthcare.emr.v2) and Clinical Task Tracker (com.sap.mobile.healthcare.ctt) does not properly restrict access, which allows remote attackers to change the backendurl, clientid, ssourl, and infopageurl settings via unspecified vectors, aka SAP Security Note 2117079.

References

https://erpscan.io/advisories/erpscan-15-002-sap-mobile-h...

x_refsource_MISC

http://www.securityfocus.com/bid/73701

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Apr 1, 2015
Vulnerability Reserved
Apr 1, 2015