CVE-2013-7245
HIGHSAP Sybase ASE 15.7 - Unauthenticated Database Dump via Backup Server
Title source: llmDescription
The Backup Server component in SAP Sybase ASE 15.7 before SP51 allows remote attackers to bypass access restrictions and perform database dumps by leveraging failure to validate credentials, aka SAP Security Note 1927859.
References (2)
Core 2
Core References
Third Party Advisory x_refsource_misc
https://www3.trustwave.com/spiderlabs/advisories/TWSL2013-035.txt
Third Party Advisory x_refsource_misc
http://blog.spiderlabs.com/2014/01/sap-sybase-ase-157-security-updates.html
Scores
CVSS v3
7.5
EPSS
0.0147
EPSS Percentile
70.3%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-285
Status
published
Products (1)
sybase/adaptive_server_enterprise
15.7 (2 CPE variants)
Published
Apr 24, 2018
Tracked Since
Feb 18, 2026