Vulnerabilities > CVE-2017-8915 - Reachable Assertion vulnerability in SAP Hana XS 1.00/2.00

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
low complexity
sap
CWE-617

Summary

sinopia, as used in SAP HANA XS 1.00 and 2.00, allows remote attackers to cause a denial of service (assertion failure and service crash) by pushing a package with a filename containing a $ (dollar sign) or % (percent) character, aka SAP Security Note 2407694.

Vulnerable Configurations

Part Description Count
Application
Sap
2

Common Weakness Enumeration (CWE)