Access Control Vulnerability in SAP Afaria Products by SAP
CVE-2015-2816

Currently unrated

Key Information:

Vendor: SAP
Status: Afaria
Vendor: CVE Published:; 1 April 2015

Summary

The XcListener component in SAP Afaria 7.0.6001.5 is susceptible to a security vulnerability arising from improper access restriction. This flaw enables remote attackers to exploit the system by sending specially crafted requests, potentially leading to unauthorized actions within the application. Effective security measures should be applied to mitigate this risk, focusing on robust access control and proper authorization mechanisms.

References

http://www.securityfocus.com/archive/1/535830/100/800/thr...

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/bid/73708

vdb-entryx_refsource_BID

http://packetstormsecurity.com/files/132363/SAP-Afaria-7-...

x_refsource_MISC

Timeline

Vulnerability published
Apr 1, 2015
Vulnerability Reserved
Apr 1, 2015