Vulnerability Details CVE-2016-3639
SAP HANA DB 1.00.091.00.1418659308 allows remote attackers to obtain sensitive topology information via an unspecified HTTP request, aka SAP Security Note 2176128.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 57.3%
CVSS Severity
CVSS v3 Score 4.3
CVSS v2 Score 5.0
References
- http://onapsis.com/research/security-advisories/sap-hana-get-topology-information-disclosure
- http://packetstormsecurity.com/files/138428/SAP-HANA-1.00.091.00.1418659308-Information-Disclosure.html
- http://seclists.org/fulldisclosure/2016/Aug/83
- http://www.securityfocus.com/bid/92547
- http://onapsis.com/research/security-advisories/sap-hana-get-topology-information-disclosure
- http://packetstormsecurity.com/files/138428/SAP-HANA-1.00.091.00.1418659308-Information-Disclosure.html
- http://seclists.org/fulldisclosure/2016/Aug/83
- http://www.securityfocus.com/bid/92547