Design/Logic Flaw

2013-08-1617:55:00

PRIOn knowledge base

www.prio-n.com

6.6 Medium

AI Score

Confidence

Low

0.031 Low

EPSS

Percentile

91.1%

JSON

The GetComputerSystem method in the HostControl service in SAP Netweaver 7.03 allows remote attackers to obtain sensitive information via a crafted SOAP request to TCP port 1128.

CPENameOperatorVersion
netweavereq7.03

CPE	Name	Operator	Version
	netweaver	eq	7.03

References

labs.integrity.pt/advisories/cve-2013-3319/

scn.sap.com/docs/DOC-8218

secunia.com/advisories/54277

exchange.xforce.ibmcloud.com/vulnerabilities/85905

service.sap.com/sap/support/notes/1816536