Juan Pablo Perez Etchegoyen

**Name of the Vulnerable Software and Affected Versions** SAP TREX version 7.10 Revision 63 **Description** The issue allows remote attackers to execute arbitrary OS commands. **Recommendations** For SAP TREX version 7.10 Revision 63, apply the fix provided in SAP Security Note 2203591 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** SAP TREX version 7.10 Revision 63 **Description** The issue allows remote attackers to obtain sensitive TNS information via an unspecified query. **Recommendations** For SAP TREX version 7.10 Revision 63, apply the fix provided in SAP Security Note 2234226 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** SAP TREX version 7.10 Revision 63 **Description** A directory traversal issue allows remote attackers to read arbitrary files. **Recommendations** For SAP TREX version 7.10 Revision 63, apply the fix as described in SAP Security Note 2203591 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** SAP TREX version 7.10 Revision 63 **Description** The issue allows remote attackers to read arbitrary files. **Recommendations** For SAP TREX version 7.10 Revision 63, apply the fix provided in SAP Security Note 2203591 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** SAP TREX version 7.10 Revision 63 **Description** The issue allows remote attackers to write to arbitrary files. This is related to vectors involving the RFC-Gateway. **Recommendations** For SAP TREX version 7.10 Revision 63, apply the fix provided in SAP Security Note 2203591 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** SAP TREX version 7.10 Revision 63 **Description** The issue allows remote attackers to execute arbitrary OS commands with SIDadm privileges. **Recommendations** For SAP TREX version 7.10 Revision 63, apply the fix provided in SAP Security Note 2234226 to resolve the issue.