CVE-2013-7245
First published: Tue Apr 24 2018(Updated: )
The Backup Server component in SAP Sybase ASE 15.7 before SP51 allows remote attackers to bypass access restrictions and perform database dumps by leveraging failure to validate credentials, aka SAP Security Note 1927859.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SAP Sybase Adaptive Server Enterprise | =15.7 | |
| SAP Sybase Adaptive Server Enterprise | =15.7-sp50 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2013-7245?
CVE-2013-7245 is considered a critical vulnerability allowing remote attackers to bypass access restrictions.
How do I fix CVE-2013-7245?
To fix CVE-2013-7245, upgrade SAP Sybase ASE 15.7 to at least SP51 or apply relevant security patches.
What types of attacks can exploit CVE-2013-7245?
CVE-2013-7245 can be exploited to perform unauthorized database dumps by bypassing credential validation.
Which versions of SAP Adaptive Server Enterprise are affected by CVE-2013-7245?
CVE-2013-7245 affects SAP Adaptive Server Enterprise 15.7 and specific SP50 builds.
Is there a workaround for CVE-2013-7245?
There is no officially documented workaround for CVE-2013-7245; upgrading is the recommended action.
- agent/references
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/description
- agent/weakness
- agent/author
- agent/event
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/sybase
- canonical/sap sybase adaptive server enterprise
- version/sap sybase adaptive server enterprise/15.7
- version/sap sybase adaptive server enterprise/15.7-sp50