Required CVE Record Information
Description
XML external entity (XXE) vulnerability in SAP Mobile Platform allows remote attackers to send requests to intranet servers via crafted XML, aka SAP Security Note 2125358.
References 5 Total
- seclists.org: 20150623 ERPSCAN Research Advisory [ERPSCAN-15-005] SAP Mobile Platform - XXE mailing-list
- securityfocus.com: 20150625 [ERPSCAN-15-005] SAP Mobile Platform - XXE mailing-list
- securityfocus.com: 73692 vdb-entry
- https://erpscan.io/advisories/erpscan-15-005-sap-mobile-platform-xxe/
- http://packetstormsecurity.com/files/132357/SAP-Mobile-Platform-2.3-XXE-Injection.html
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 5 Total
- seclists.org: 20150623 ERPSCAN Research Advisory [ERPSCAN-15-005] SAP Mobile Platform - XXE mailing-listx_transferred
- securityfocus.com: 20150625 [ERPSCAN-15-005] SAP Mobile Platform - XXE mailing-listx_transferred
- securityfocus.com: 73692 vdb-entryx_transferred
- https://erpscan.io/advisories/erpscan-15-005-sap-mobile-platform-xxe/ x_transferred
- http://packetstormsecurity.com/files/132357/SAP-Mobile-Platform-2.3-XXE-Injection.html x_transferred