Denial of Service Vulnerability in SAP HANA XS by Sinopia

CVE-2017-8915

What is CVE-2017-8915?

A vulnerability within Sinopia, used in SAP HANA XS versions 1.00 and 2.00, permits remote attackers to execute a denial of service by sending a crafted package with filenames that include a dollar sign ($) or a percent sign (%). This triggers an assertion failure that leads to the service crashing, potentially disrupting operations and service availability.

References