Vulnerability in Sap Netweaver

CVE-2015-5067

The (1) Cross-System Tools and (2) Data Transfer Workbench in SAP NetWeaver have hardcoded credentials, which allows remote attackers to obtain access via unspecified vectors, aka SAP Security Notes 2059659 and 2057982.

EPSS: 0.016 (82.0th percentile) — read the EPSS interpretation.

Affected products

Sap Netweaver
N/a — versions n/a

Weakness classification (CWE)

CWE-255

References

cve@mitre.org (x_refsource_MISC)
cve@mitre.org (x_refsource_MISC)
cve@mitre.org (x_refsource_MISC, Vendor Advisory)
cve@mitre.org (VDB Entry, Third Party Advisory, x_refsource_MISC)
cve@mitre.org (VDB Entry, Third Party Advisory, x_refsource_MISC)
75165 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_BID)