CVE-2015-4161

SAP Afaria - Unauthenticated Unspecified Impact via Improper Access Restriction

Title source: llm
STIX 2.1

Description

SAP Afaria does not properly restrict access to unspecified functionality, which allows remote attackers to obtain sensitive information, gain privileges, or have other unspecified impact via unknown vectors, SAP Security Note 2155690.

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/74800
Exploit mailing-list x_refsource_fulldisc
http://seclists.org/fulldisclosure/2015/May/96

Scores

EPSS 0.0047
EPSS Percentile 64.6%

Details

CWE
CWE-264
Status published
Products (1)
sap/afaria
Published Jun 02, 2015
Tracked Since Feb 18, 2026