PT-2016-6012 · Sap · Sap Netweaver 2004S

Sergio Abraham

Published

2016-10-05

Updated

2016-11-28

CVE-2016-4551

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Name of the Vulnerable Software and Affected Versions SAP NetWeaver 2004s versions 7.00 SP Level 0031

Description The issue might allow remote attackers to spoof IP addresses written to the Security Audit Log via vectors related to the network landscape.

Recommendations For SAP NetWeaver 2004s version 7.00 SP Level 0031, apply the fix as described in SAP Security Note 2190621 to resolve the issue.

Fix

Improper Access Control

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-284

Related Identifiers

CVE-2016-4551

Affected Products

Sap Netweaver 2004S

PT-2016-6012 · Sap · Sap Netweaver 2004S

CVE-2016-4551

Weakness Enumeration

Related Identifiers

Affected Products

References · 5