CVE-2013-3678 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	9 UNKNOWN	NETWORK	LOW		AV:N/AC:L/Au:S/C:C/I:C/A:C

Base Score

CVSS 3.x

EPSS Score

Percentile: 84%

Affected Products (NVD)

Vendor	Product	Version
sap	governance_risk_and_compliance	-

𝑥

= Vulnerable software versions

References

http://packetstormsecurity.com/files/129083/SAP-GRC-Bypass-Privilege-Escalation-Program-Execution.html

http://seclists.org/fulldisclosure/2014/Nov/25

http://www.esnc.de/security-advisories/security-vulnerability-in-sap-grc-access-control

http://www.securityfocus.com/archive/1/533965/100/0/threaded

http://www.securityfocus.com/bid/71055

https://exchange.xforce.ibmcloud.com/vulnerabilities/98637

https://service.sap.com/sap/support/notes/2039348

http://packetstormsecurity.com/files/129083/SAP-GRC-Bypass-Privilege-Escalation-Program-Execution.html

http://seclists.org/fulldisclosure/2014/Nov/25

http://www.esnc.de/security-advisories/security-vulnerability-in-sap-grc-access-control

http://www.securityfocus.com/archive/1/533965/100/0/threaded

http://www.securityfocus.com/bid/71055

https://exchange.xforce.ibmcloud.com/vulnerabilities/98637

https://service.sap.com/sap/support/notes/2039348