PT-2015-7764 · Sap · Sap Manufacturing Integration/Intelligence

Mathieu Geli

Publicado

2015-11-24

Atualizado

2018-12-10

CVE-2015-8329

CVSS v2.0

5.0

Média

Vetor

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions SAP Manufacturing Integration and Intelligence (MII) (affected versions not specified)

Description The issue concerns the use of weak encryption, specifically Base64 and DES, which can be exploited by attackers to conduct downgrade attacks and decrypt passwords.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-310

Identificadores relacionados

CVE-2015-8329

Produtos afetados

Sap Manufacturing Integration/Intelligence

PT-2015-7764 · Sap · Sap Manufacturing Integration/Intelligence

CVE-2015-8329

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4