CVE-2017-7691

9.8CRITICAL

Key Information:

Vendor: SAP
Status: Trex
Vendor: CVE Published:; 11 April 2017

Summary

A code injection vulnerability exists in SAP TREX / Business Warehouse Accelerator (BWA). The vendor response is SAP Security Note 2419592.

References

http://www.securityfocus.com/bid/97567

vdb-entryx_refsource_BID

https://blogs.sap.com/2017/04/11/sap-security-patch-day-a...

x_refsource_CONFIRM

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 11, 2017
Vulnerability Reserved
Apr 11, 2017

.