CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2016-10005

Webdynpro in SAP Solman 7.1 through 7.31 allows remote attackers to obtain sensitive information via webdynpro/dispatcher/sap.com/caf~eu~gp~example~timeoff~wd requests, aka SAP Security Note 2344524.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.01

EPSS Ranking 76.0%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

http://packetstormsecurity.com/files/140232/SAP-Solman-7.31-Information-Disclosure.html
http://seclists.org/fulldisclosure/2016/Dec/69
http://www.securityfocus.com/bid/92949
https://erpscan.io/advisories/erpscan-16-035-sap-solman-user-accounts-dislosure/
http://packetstormsecurity.com/files/140232/SAP-Solman-7.31-Information-Disclosure.html
http://seclists.org/fulldisclosure/2016/Dec/69
http://www.securityfocus.com/bid/92949
https://erpscan.io/advisories/erpscan-16-035-sap-solman-user-accounts-dislosure/

Products affected by CVE-2016-10005

Sap » Solution Manager » Version: 7.1

cpe:2.3:a:sap:solution_manager:7.1
Sap » Solution Manager » Version: 7.20

cpe:2.3:a:sap:solution_manager:7.20
Sap » Solution Manager » Version: 7.31

cpe:2.3:a:sap:solution_manager:7.31

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-10005

Products

Pricing

Contact Us