CVE-2014-3132
SAP Background Processing - Authenticated Information Disclosure via RFC Function
Title source: llmDescription
SAP Background Processing does not properly restrict access, which allows remote authenticated users to obtain sensitive information via an unspecified RFC function, related to SAP Solution Manager 7.1.
References (5)
Core 5
Core References
Mailing List mailing-list
x_refsource_fulldisc
http://seclists.org/fulldisclosure/2014/Apr/299
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/67107
Various Sources x_refsource_confirm
https://service.sap.com/sap/support/notes/1918333
Various Sources x_refsource_confirm
http://scn.sap.com/docs/DOC-8218
Various Sources x_refsource_misc
http://www.onapsis.com/resources/get.php?resid=adv_onapsis-2014-006
Scores
EPSS
0.0025
EPSS Percentile
48.4%
Details
CWE
CWE-264
Status
published
Products (1)
sap/background_processing
Published
Apr 30, 2014
Tracked Since
Feb 18, 2026