CVE-2015-7991

Name of the Vulnerable Software and Affected Versions SAP HANA DB version 1.00.73.00.389160

Description The issue is related to the Web Dispatcher service in SAP HANA DB, which lacks protection for service data. This allows remote attackers to potentially obtain passwords by reading web dispatcher and security trace files. The exploitation of this issue may grant unauthorized access to sensitive information.

Recommendations For SAP HANA DB version 1.00.73.00.389160, consider restricting access to the Web Dispatcher service as a temporary workaround until a patch is available. Additionally, review the security configurations to ensure that service data is properly protected. At the moment, there is no information about a newer version that contains a fix for this vulnerability.