[ERPSCAN-15-031] SAP MII – Encryption Downgrade vulnerability

Posted by ERPScan inc on Feb 12

Application: SAP MII
Versions Affected: SAP MII 12.2, 14.0, 15.0
Vendor URL: http://SAP.com
Bugs: Authentication bypass
Send: 05.09.2015
Reported: 05.09.2015
Vendor response: 06.09.2015
Date of Public Advisory: 20.11.2015
Reference: SAP Security Note 2240274
Author: Mathieu Geli (ERPScan)

Description

1….

Leave a Reply