CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-6950

SAP GUI 7.2 through 7.5 allows remote attackers to bypass intended security policy restrictions and execute arbitrary code via a crafted ABAP code, aka SAP Security Note 2407616.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.012

EPSS Ranking 77.8%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

http://www.securityfocus.com/bid/96872
http://www.securitytracker.com/id/1038122
https://erpscan.io/advisories/erpscan-17-011-sap-gui-versions-remote-code-execution-bypass-security-policy/
http://www.securityfocus.com/bid/96872
http://www.securitytracker.com/id/1038122
https://erpscan.io/advisories/erpscan-17-011-sap-gui-versions-remote-code-execution-bypass-security-policy/

Products affected by CVE-2017-6950

Sap » Gui For Windows » Version: 7.20

cpe:2.3:a:sap:gui_for_windows:7.20
Sap » Gui For Windows » Version: 7.30

cpe:2.3:a:sap:gui_for_windows:7.30
Sap » Gui For Windows » Version: 7.40_core_sp00-sp011

cpe:2.3:a:sap:gui_for_windows:7.40_core_sp00-sp011
Sap » Gui For Windows » Version: 7.50_core_sp000

cpe:2.3:a:sap:gui_for_windows:7.50_core_sp000

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-6950

Products

Pricing

Contact Us