Hardcoded Credentials Vulnerability in SAP NetWeaver's Cross-System Tools and Data Transfer Workbench

Hardcoded Credentials Vulnerability in SAP NetWeaver's Cross-System Tools and Data Transfer Workbench

CVE-2015-5067 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

The (1) Cross-System Tools and (2) Data Transfer Workbench in SAP NetWeaver have hardcoded credentials, which allows remote attackers to obtain access via unspecified vectors, aka SAP Security Notes 2059659 and 2057982.

Learn more about our Web Application Penetration Testing UK.