CyberSec.Space Logo
返回 CVE 浏览器

CVE-2013-7095

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0800%
EPSS Percentile29.08th
Published2013年12月13日
Last Modified2026年4月29日

Vulnerability Description

The XML parser (crm_flex_data) in SAP Customer Relationship Management (CRM) 7.02 EHP 2 has unknown impact and attack vectors related to an XML External Entity (XXE) issue.

Affected Platforms (CPE)

📦
Sap

Customer Relationship Management

= 7.02

References & Advisories

🔗 http://scn.sap.com/docs/DOC-8218
🔗 http://secunia.com/advisories/56064
🔗 http://www.securityfocus.com/bid/64265
🔗 http://www.securitytracker.com/id/1029488
🔗 https://erpscan.io/advisories/erpscan-13-025-sap-crm-crm_flex_data-xxe/
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/89703
🔗 https://service.sap.com/sap/support/notes/1909665
🔗 http://scn.sap.com/docs/DOC-8218

相关漏洞威胁

CVE-2021-431309.8

An SQL Injection vulnerability exists in Sourcecodester Customer Relationship Management System (CRM) 1.0 via the username paramet...

CVE-2021-372218.8

A file upload vulnerability exists in Sourcecodester Customer Relationship Management System 1.0 via the account update option & c...

CVE-2005-40877.5

PHP remote file include vulnerability in acceptDecline.php in Sugar Suite Open Source Customer Relationship Management (SugarCRM) ...

CVE-2007-38697.5

Multiple unspecified vulnerabilities in the Customer Relationship Management Online Marketing component in Oracle PeopleSoft Enter...