CVE-2010-2347
Published Jun 21, 2010
Last updated 6 years ago
Overview
- Description
- The Telnet interface in the SAP J2EE Engine Core (SAP-JEECOR) 6.40 through 7.02, and Server Core (SERVERCORE) 7.10 through 7.30 allows remote authenticated users to bypass a security check and conduct SMB relay attacks via unspecified vectors.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4.9
- Impact score
- 4.9
- Exploitability score
- 6.8
- Vector string
- AV:N/AC:M/Au:S/C:P/I:P/A:N
Weaknesses
- nvd@nist.gov
- CWE-264
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:sap:j2ee_engine_core:6.40:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AF47C84E-A928-471E-8866-9EFE8503C7B5"
},
{
"criteria": "cpe:2.3:a:sap:j2ee_engine_core:7.00:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0BAA9A27-40F8-4A2D-9988-4B25FC0E47C7"
},
{
"criteria": "cpe:2.3:a:sap:j2ee_engine_core:7.01:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "586AF9AC-84C8-4C50-8053-2DB8525620AD"
},
{
"criteria": "cpe:2.3:a:sap:j2ee_engine_core:7.02:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6911CBA7-2677-42E6-BC92-0389B0CEA104"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:sap:server_core:7.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C7CE3526-F61B-4DA3-B1C0-7523CF3A82DF"
},
{
"criteria": "cpe:2.3:a:sap:server_core:7.11:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4D1FCCA5-1C57-44A5-8DCE-3EC1DACC86DD"
},
{
"criteria": "cpe:2.3:a:sap:server_core:7.20:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FC7EE990-5E12-480A-8721-AF926883819A"
},
{
"criteria": "cpe:2.3:a:sap:server_core:7.30:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1A2054E9-824C-4377-B845-CEA20965BB81"
}
],
"operator": "OR"
}
]
}
]