Sensitive Information Disclosure in SAP Management Console (SAP Security Note 2091768)

Sensitive Information Disclosure in SAP Management Console (SAP Security Note 2091768)

CVE-2015-2817 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The SAP Management Console in SAP NetWeaver 7.40 allows remote attackers to obtain sensitive information via the ReadProfile parameters, aka SAP Security Note 2091768.

Learn more about our Web Application Penetration Testing UK.