CVE-2013-6859
SAP Sybase ASE <15.0.3 ESD#4.3/15.5<ESD#5.3/15.7<SP50/SP100 Privilege Escalation
Title source: llmDescription
SAP Sybase Adaptive Server Enterprise (ASE) before 15.0.3 ESD#4.3. 15.5 before 15.5 ESD#5.3, and 15.7 before 15.7 SP50 or 15.7 SP100 does not properly perform authorization, which allows remote authenticated users to gain privileges via unspecified vectors.
References (4)
Core 4
Core References
Various Sources x_refsource_confirm
https://service.sap.com/sap/support/notes/1849356
Vendor Advisory x_refsource_confirm
http://www.sybase.com/detail?id=1099371
Various Sources x_refsource_confirm
http://scn.sap.com/docs/DOC-8218
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/55537
Scores
EPSS
0.0157
EPSS Percentile
72.3%
Details
CWE
CWE-287
Status
published
Products (3)
sybase/adaptive_server_enterprise
15.0.3
sybase/adaptive_server_enterprise
15.5
sybase/adaptive_server_enterprise
15.7
Published
Nov 23, 2013
Tracked Since
Feb 18, 2026