Unrated severityNVD Advisory· Published Jun 24, 2015· Updated May 6, 2026

CVE-2015-5067

Description

The (1) Cross-System Tools and (2) Data Transfer Workbench in SAP NetWeaver have hardcoded credentials, which allows remote attackers to obtain access via unspecified vectors, aka SAP Security Notes 2059659 and 2057982.

Affected products

SAP/Netweaver
cpe:2.3:a:sap:netweaver:-:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

packetstormsecurity.com/files/133515/SAP-NetWeaver-AS-FKCDBFTRACE-ABAP-Hardcoded-Credentials.htmlnvdThird Party AdvisoryVDB Entry
packetstormsecurity.com/files/133516/SAP-NetWeaver-AS-LSCT1I13-ABAP-Hardcoded-Credentials.htmlnvdThird Party AdvisoryVDB Entry
scn.sap.com/community/security/blog/2015/06/11/sap-security-notes-june-2015nvdVendor Advisory
www.securityfocus.com/bid/75165nvdThird Party AdvisoryVDB Entry
erpscan.io/advisories/erpscan-15-015-sap-netweaver-hardcoded-credentials/nvd
erpscan.io/advisories/erpscan-15-016-sap-netweaver-hardcoded-credentials/nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000