Arbitrary File Read Vulnerability in SAP BusinessObjects Edge 4.0 FRS CORBA Listener

Arbitrary File Read Vulnerability in SAP BusinessObjects Edge 4.0 FRS CORBA Listener

CVE-2015-2073 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

The File RepositoRy Server (FRS) CORBA listener in SAP BussinessObjects Edge 4.0 allows remote attackers to read arbitrary files via a full pathname, aka SAP Note 2018682.

Learn more about our Cis Benchmark Audit For Server Software.