CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2015-2075

MEDIUM
5.0
CVSS Severity Score
EPSS Score0.1980%
EPSS Percentile18.30th
Published2015年2月27日
Last Modified2026年5月6日

Vulnerability Description

SAP BusinessObjects Edge 4.0 allows remote attackers to delete audit events from the auditee queue via a clearData CORBA operation, aka SAP Note 2011396.

Affected Platforms (CPE)

📦
Sap

Businessobjects Edge

= 4.0

References & Advisories

🔗 http://packetstormsecurity.com/files/130522/SAP-Business-Objects-Unauthorized-Audit-Information-Delete.html
🔗 http://seclists.org/fulldisclosure/2015/Feb/95
🔗 http://www.securityfocus.com/archive/1/534751/100/0/threaded
🔗 http://www.securityfocus.com/bid/72778
🔗 http://packetstormsecurity.com/files/130522/SAP-Business-Objects-Unauthorized-Audit-Information-Delete.html
🔗 http://seclists.org/fulldisclosure/2015/Feb/95
🔗 http://www.securityfocus.com/archive/1/534751/100/0/threaded
🔗 http://www.securityfocus.com/bid/72778

相關漏洞威脅

CVE-2014-938710.0

SAP BusinessObjects Edge 4.1 allows remote attackers to obtain the SI_PLATFORM_SEARCH_SERVER_LOGON_TOKEN token and gain privileges...

CVE-2015-773010.0

SAP BusinessObjects BI Platform 4.1, BusinessObjects Edge 4.0, and BusinessObjects XI (BOXI) 3.1 R3 allow remote attackers to caus...

CVE-2014-93209.8

SAP BusinessObjects Edge 4.1 allows remote attackers to obtain the SI_PLATFORM_SEARCH_SERVER_LOGON_TOKEN token and consequently ga...

CVE-2014-83107.1

The CMS CORBA listener in SAP BusinessObjects BI Edge 4.0 allows remote attackers to cause a denial of service (server shutdown) v...