Vulnerabilities > SAP > Customer Relationship Management > High

DATE CVE VULNERABILITY TITLE RISK
2015-05-12 CVE-2015-3980 SQL Injection vulnerability in SAP Customer Relationship Management
SQL injection vulnerability in the Business Rules Framework (CRM-BF-BRF) in SAP CRM allows attackers to execute arbitrary SQL commands via unspecified vectors, aka SAP Security Note 2097534.
network
low complexity
sap CWE-89
7.5
2015-05-12 CVE-2015-3979 Arbitrary Code Execution vulnerability in SAP Business Rules Framework
Unspecified vulnerability in the Business Rules Framework (CRM-BF-BRF) in SAP CRM allows attackers to execute arbitrary code via unknown vectors, aka SAP Security Note 2097534.
network
low complexity
sap
7.5