Description
Multiple serious vulnerabilities have been found in SAP products. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions or obtain sensitive information.
Below is a complete list of vulnerabilities
- Buffer overflow and improper access restrictions in Afaria, unknown vulnerability in Sybase SQL Anywhere can be exploited remotely via a specially designed request;
- XXE vulnerability in Mobile Platform and Netweaver Portal can be exploited remotely via a specially designed XML;
- An unknown vulnerability in Management Console can be exploited remotely via manipulations with ReadProfile parameters;
- Buffer overflow in Netweaver dispatcher, improper access restrictions in EMR Unwired and Clinical Task Killer can be exploited remotely via an unknown vectors.
Original advisories
Related products
CVE list
- CVE-2015-2820 critical
- CVE-2015-2819 critical
- CVE-2015-2818 critical
- CVE-2015-2817 critical
- CVE-2015-2816 critical
- CVE-2015-2815 high
- CVE-2015-2814 high
- CVE-2015-2813 critical
- CVE-2015-2812 critical
- CVE-2015-2811 critical
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!