CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-8915

sinopia, as used in SAP HANA XS 1.00 and 2.00, allows remote attackers to cause a denial of service (assertion failure and service crash) by pushing a package with a filename containing a $ (dollar sign) or % (percent) character, aka SAP Security Note 2407694.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.009

EPSS Ranking 74.0%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

http://www.securityfocus.com/bid/96206
https://erpscan.io/advisories/erpscan-17-008-sap-hana-xs-sinopia-dos/
https://erpscan.io/press-center/blog/sap-cyber-threat-intelligence-report-february-2017/
http://www.securityfocus.com/bid/96206
https://erpscan.io/advisories/erpscan-17-008-sap-hana-xs-sinopia-dos/
https://erpscan.io/press-center/blog/sap-cyber-threat-intelligence-report-february-2017/

Products affected by CVE-2017-8915

Sap » Hana Xs » Version: 1.00

cpe:2.3:a:sap:hana_xs:1.00
Sap » Hana Xs » Version: 2.00

cpe:2.3:a:sap:hana_xs:2.00

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-8915

Products

Pricing

Contact Us