4.9

CVE-2010-2347

The Telnet interface in the SAP J2EE Engine Core (SAP-JEECOR) 6.40 through 7.02, and Server Core (SERVERCORE) 7.10 through 7.30 allows remote authenticated users to bypass a security check and conduct SMB relay attacks via unspecified vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
SAPJ2ee Engine Core Version6.40
SAPJ2ee Engine Core Version7.00
SAPJ2ee Engine Core Version7.01
SAPJ2ee Engine Core Version7.02
SAPServer Core Version7.10
SAPServer Core Version7.11
SAPServer Core Version7.20
SAPServer Core Version7.30
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.09% 0.612
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.9 6.8 4.9
AV:N/AC:M/Au:S/C:P/I:P/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://archives.neohapsis.com/archives/fulldisclosure/2010-06/0371.html
http://secunia.com/advisories/40223
Vendor Advisory
http://www.onapsis.com/resources/get.php?resid=adv_onapsis-2010-005
http://www.securityfocus.com/archive/1/511855/100/0/threaded
http://www.securityfocus.com/bid/40916
http://www.securitytracker.com/id?1024114
https://exchange.xforce.ibmcloud.com/vulnerabilities/59502
https://service.sap.com/sap/support/notes/1425847