PT-2015-5912 · Sap · Sap Mobile Platform

Published

2015-04-01

Updated

2018-12-10

CVE-2015-2818

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions SAP Mobile Platform version 3

Description The issue allows remote attackers to send requests to intranet servers via crafted XML. This is an XML external entity (XXE) vulnerability.

Recommendations For SAP Mobile Platform version 3, update to a version that includes the fix provided in SAP Security Note 2125513 to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2015-2818

Affected Products

Sap Mobile Platform

PT-2015-5912 · Sap · Sap Mobile Platform

CVE-2015-2818

Related Identifiers

Affected Products

References · 3