Arbitrary ABAP Code Injection Vulnerability in SAP HANA Extended Application Services (XS)

Arbitrary ABAP Code Injection Vulnerability in SAP HANA Extended Application Services (XS)

CVE-2015-1311 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

The Extended Application Services (XS) in SAP HANA allows remote attackers to inject arbitrary ABAP code via unspecified vectors, aka SAP Note 2098906. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Learn more about our Web Application Penetration Testing UK.