PT-2016-5771 · Sap · Sap Console

Nahuel D. Sánchez

Published

2016-10-13

Updated

2016-11-28

CVE-2016-3946

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions SAP Console (aka SAPConsole) version 7.30

Description The issue allows local users to discover SAP Server login credentials by reading the Windows registry.

Recommendations For SAP Console (aka SAPConsole) version 7.30, update to a version that addresses this issue, as the current version allows unauthorized access to sensitive information.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200CWE-255

Related Identifiers

CVE-2016-3946

Affected Products

Sap Console

PT-2016-5771 · Sap · Sap Console

CVE-2016-3946

Weakness Enumeration

Related Identifiers

Affected Products

References · 5