Lucene search

[email protected]CVE-2015-4158

HistoryJun 02, 2015 - 2:59 p.m.

CVE-2015-4158

2015-06-0214:59:18

[email protected]

web.nvd.nist.gov

cve-2015-4158

sap

abap

java server

denial of service

service termination

security

nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.9 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.0%

JSON

SAP ABAP & Java Server allows remote attackers to cause a denial of service (service termination) via unspecified vectors, aka SAP Security Note 2121661.

Affected configurations

NVD

Node

sapnetweaver_abap_application_serverMatch-

sapnetweaver_java_application_serverMatch-

CPENameOperatorVersion
sap:netweaver_abap_application_serversap netweaver abap application servereq-
sap:netweaver_java_application_serversap netweaver java application servereq-

CPE	Name	Operator	Version
sap:netweaver_abap_application_server	sap netweaver abap application server	eq	-
sap:netweaver_java_application_server	sap netweaver java application server	eq	-

References

seclists.org/fulldisclosure/2015/May/96

www.securityfocus.com/bid/74799

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.9 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.0%

JSON

Related for CVE-2015-4158

cvelist1 nvd1 prion1