• Все разделы
  • Статьи
  • Медиа
  • Новости
  • Нормативные материалы
  • Конференции
  • Глоссарий

Note 1661336 - Potential information disclosure relating to passwords

Главная Специалистам База уязвимостей Note 1661336 - Potential information disclosure relating to passwords

Карточка уязвимости

Характеристики уязвимости

Уровень опасности
Оценка CVSS
Производитель ПО
SAP
Наименование ПО
SAP Notes (1661336-2) SAP Support Packages (XI_ADAPTER_FRAMEWORK_710_SP012_000010, XI_ADAPTER_FRAMEWORK_710_SP013_000004, XI_ADAPTER_FRAMEWORK_710_SP014_000005, XI_ADAPTER_FRAMEWORK_710_SP015_000000, XI_ADAPTER_FRAMEWORK_710_SP016_000000, XI_ADAPTER_FRAMEWORK_710_SP999999_999999, XI_ADAPTER_FRAMEWORK_711_SP006_000042, XI_ADAPTER_FRAMEWORK_711_SP007_000021, XI_ADAPTER_FRAMEWORK_711_SP008_000013, XI_ADAPTER_FRAMEWORK_711_SP009_000003, XI_ADAPTER_FRAMEWORK_711_SP010_000000, XI_ADAPTER_FRAMEWORK_711_SP011_000000, XI_ADAPTER_FRAMEWORK_711_SP999999_999999, XI_ADAPTER_FRAMEWORK_730_SP001_000012, XI_ADAPTER_FRAMEWORK_730_SP002_000013, XI_ADAPTER_FRAMEWORK_730_SP003_000019, XI_ADAPTER_FRAMEWORK_730_SP004_000016, XI_ADAPTER_FRAMEWORK_730_SP005_000020, XI_ADAPTER_FRAMEWORK_730_SP007_000005, XI_ADAPTER_FRAMEWORK_730_SP008_000000, XI_ADAPTER_FRAMEWORK_730_SP999999_999999, XI_ADAPTER_FRAMEWORK_731_SP002_000017, XI_ADAPTER_FRAMEWORK_731_SP003_000002, XI_ADAPTER_FRAMEWORK_731_SP004_000001, XI_ADAPTER_FRAMEWORK_731_SP005_000000, XI_ADAPTER_FRAMEWORK_731_SP999999_999999)
Описание
Information such as the user passwords can be discovered using PI JMS  Adapter. This information may be used by an attacker to further target SAP PI.
Как исправить
The issue has been resolved by code correction. The archives and the support package stack guide can be found on the SAP Service Marketplacedescribed in SAP Note 952402.
Ссылки