SAP HANA DB Web Dispatcher Service Information Disclosure Vulnerability

SAP HANA DB Web Dispatcher Service Information Disclosure Vulnerability

CVE-2015-7991 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The Web Dispatcher service in SAP HANA DB 1.00.73.00.389160 (NewDB100_REL) allows remote attackers to read web dispatcher and security trace files and possibly obtain passwords via unspecified vectors, aka SAP Security Note 2148854.

Learn more about our Web App Pen Testing.