CVE-2008-0306

EPSS 0.05%
Published 11.03.2008 23:44:00
Last modified 09.04.2025 00:30:58
Source cve@mitre.org
Teams watchlist Login
Open Login

sdbstarter in SAP MaxDB 7.6.0.37, and possibly other versions, allows local users to execute arbitrary commands by using unspecified environment variables to modify configuration settings.

Affected products Warnungen 0 Metrics 2 CWE 0 References 9

Data is provided by the National Vulnerability Database (NVD)

SAP ≫ Maxdb Version7.6.0.37

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.05%	0.126

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	6.9	3.4	10	AV:L/AC:M/Au:N/C:C/I:C/A:C

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=670

http://secunia.com/advisories/29312

Vendor Advisory

http://www.securityfocus.com/bid/28185

http://www.securitytracker.com/id?1019570

http://www.vupen.com/english/advisories/2008/0844/references

https://exchange.xforce.ibmcloud.com/vulnerabilities/41104

https://nvd.nist.gov/vuln/detail/CVE-2008-0306

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2008-0306

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2008-0306

EUVD