HIGH🇬🇧 English

CVE-2014-6284

CVSS 7.5v2.0pub. 2015-06-08upd. 2026-05-06

SAP Adaptive Server Enterprise (ASE) before 15.7 SP132 and 16.0 before 16.0 SP01 allows remote attackers to bypass the challenge and response mechanism and obtain access to the probe account via a crafted response, aka SAP Security Note 2113995.

oryginał EN
CVSS Vector
AV:N/AC:L/Au:N/C:P/I:P/A:P
  • Sybase Adaptive Server Enterprise

    APP
    Sybase
    16.0≤ 15.7
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2016-7402CRITICAL9.8ten sam produkt

SAP ASE 16.0 SP02 PL03 and prior versions allow attackers who own SourceDB and TargetDB databases to elevate p...

CVE-2013-7245HIGH7.5ten sam produkt

The Backup Server component in SAP Sybase ASE 15.7 before SP51 allows remote attackers to bypass access restri...

CVE-2017-5371HIGH7.5ten sam produkt

Odata Server in SAP Adaptive Server Enterprise (ASE) 16 allows remote attackers to cause a denial of service (...

CVE-2015-1310HIGH7.5ten sam produkt

SQL injection vulnerability in SAP Adaptive Server Enterprise (Sybase ASE) allows remote attackers to execute ...

CVE-2013-6859HIGH8.5ten sam produkt

SAP Sybase Adaptive Server Enterprise (ASE) before 15.0.3 ESD#4.3. 15.5 before 15.5 ESD#5.3, and 15.7 before 1...

CVE-2014-6284 — HIGH 7.5 | CVEbaza.pl