CVE-2017-6950

SAP GUI 7.2 through 7.5 allows remote attackers to bypass intended security policy restrictions and execute arbitrary code via a crafted…

mitre·CWE-732·Published 2017-03-23

CVSS

—

EPSS

0.04

KEV

Exploits

cve.orgen

178 chars

SAP GUI 7.2 through 7.5 allows remote attackers to bypass intended security policy restrictions and execute arbitrary code via a crafted ABAP code, aka SAP Security Note 2407616.

NVDen

178 chars

SAP GUI 7.2 through 7.5 allows remote attackers to bypass intended security policy restrictions and execute arbitrary code via a crafted ABAP code, aka SAP Security Note 2407616.

NVDes

252 chars

SAP GUI 7.2 hasta la versión 7.5 permite a atacantes remotos eludir las restricciones de política de seguridad previstas y ejecutar código arbitrario a través de un código ABAP manipulado, vulnerabilidad también conocida como SAP Security Note 2407616.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	7.5	10.0	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P
3.0	Primary	NVD	9.8	3.9	5.9	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H