CVE-2015-2812

Medium

5/10

Summary

XML external entity (XXE) vulnerability in XMLValidationComponent in SAP NetWeaver Portal 7.31.201109172004 allows remote attackers to send requests to intranet servers via crafted XML, aka SAP Security Note 2093966.

Access Complexity: LOW
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: PARTIAL
Confidentiality Impact: NONE
Availability Impact: NONE

References

Advisory Timeline

Published Apr 01, 2015

CVE-2015-2812

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS