// For flags

CVE-2007-1914

 

Severity Score

7.8
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

The RFC_START_PROGRAM function in the SAP RFC Library 6.40 and 7.00 before 20061211 allows remote attackers to obtain sensitive information (external RFC server configuration data) via unspecified vectors, a different vulnerability than CVE-2006-6010. NOTE: This information is based upon a vague initial disclosure. Details will be updated after the grace period has ended.

La función RFC_START_PROGRAM en SAP RFC Library 6.40 y 7.00 anerior a 20061211 permite a atacantes remotos obtener información sensible (configuración del servidor de datos RFC externo) a través de vectores no especificados, una vulnerabilidad diferente que CVE-2006-6010. NOTA: Esta información se basa sobre un acceso inicial vago. Los detalles serán actualizados después una vez que el período de gracia haya terminado.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Complete
Integrity
None
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2007-04-10 CVE Reserved
  • 2007-04-10 CVE Published
  • 2024-06-05 EPSS Updated
  • 2024-08-07 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Sap
Search vendor "Sap"
Rfc Library
Search vendor "Sap" for product "Rfc Library"
6.4
Search vendor "Sap" for product "Rfc Library" and version "6.4"
-
Affected
Sap
Search vendor "Sap"
Rfc Library
Search vendor "Sap" for product "Rfc Library"
7.0
Search vendor "Sap" for product "Rfc Library" and version "7.0"
-
Affected