Vulnerability Description
The SysAdminWebTool servlets in SAP Mobile Platform allow remote attackers to bypass authentication and obtain sensitive information, gain privileges, or have unspecified other impact via unknown vectors, aka SAP Security Note 2227855.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sap | Mobile Platform | All versions |
Related Weaknesses (CWE)
References
- http://scn.sap.com/community/security/blog/2015/12/09/sap-security-notes-decembeVendor Advisory
- https://erpscan.io/advisories/10761/
- http://scn.sap.com/community/security/blog/2015/12/09/sap-security-notes-decembeVendor Advisory
- https://erpscan.io/advisories/10761/
FAQ
What is CVE-2015-8600?
CVE-2015-8600 is a vulnerability with a CVSS score of 7.5 (HIGH). The SysAdminWebTool servlets in SAP Mobile Platform allow remote attackers to bypass authentication and obtain sensitive information, gain privileges, or have unspecified other impact via unknown vect...
How severe is CVE-2015-8600?
CVE-2015-8600 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-8600?
Check the references section above for vendor advisories and patch information. Affected products include: Sap Mobile Platform.