VYPR
Unrated severityNVD Advisory· Published Apr 15, 2004· Updated Jun 16, 2026

CVE-2002-1578

CVE-2002-1578

Description

The default installation of SAP R/3, when using Oracle and SQL*net V2 3.x, 4.x, and 6.10, allows remote attackers to obtain arbitrary, sensitive SAP data by directly connecting to the Oracle database and executing queries against the database, which is not password-protected.

Affected products

2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.