Lucene search
HistoryApr 01, 2015 - 2:59 p.m.
CVE-2015-2811
cve-2015-2811
xxe vulnerability
sap
netweaver portal
security
2111939
nvd
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
6.7 Medium
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
73.0%
XML external entity (XXE) vulnerability in ReportXmlViewer in SAP NetWeaver Portal 7.31.201109172004 allows remote attackers to send requests to intranet servers via crafted XML, aka SAP Security Note 2111939.
Affected configurations
Node
sapnetweaver_enterprise_portalMatch7.31
| CPE | Name | Operator | Version |
|---|---|---|---|
| sap:netweaver_enterprise_portal | sap netweaver enterprise portal | eq | 7.31 |
Related
cvelist
cvelist
CVE-2015-2811
2015-04-01 14:00:00
nvd
nvd
CVE-2015-2811
2015-04-01 14:59:09
securityvulns
securityvulns
[ERPSCAN-15-006] SAP NetWeaver Portal ReportXmlViewer - XXE
2015-06-29 00:00:00
SAP NetWeather multiple security vulnerabilities
2015-06-29 00:00:00
erpscan
erpscan
SAP NetWeaver Portal ReportXmlViewer - XXE
2014-06-11 00:00:00
prion
prion
Xxe
2015-04-01 14:59:00
kaspersky
kaspersky
KLA10526 Multiple vulnerabilities in SAP products
2015-04-01 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
6.7 Medium
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
73.0%
Related for CVE-2015-2811