PT-2015-5911 · Sap · Sap Afaria
Vahagn Vardanyan
·
Published
2015-04-01
·
Updated
2018-12-10
·
CVE-2015-2816
CVSS v2.0
7.5
High
| Vector | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
SAP Afaria version 7.0.6001.5
Description
The issue is related to the XcListener in SAP Afaria, which does not properly restrict access. This allows remote attackers to have an unspecified impact via a crafted request.
Recommendations
For SAP Afaria version 7.0.6001.5, consider restricting access to the XcListener to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Improper Access Control
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Sap Afaria