Critical severity9.8NVD Advisory· Published Oct 16, 2017· Updated Jun 17, 2026
CVE-2017-15295
CVE-2017-15295
Description
Xpress Server in SAP POS does not require authentication for read/write/delete file access. This is SAP Security Note 2520064.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:sap:point_of_sale_xpress_server:1020:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:sap:point_of_sale_xpress_server:1020:*:*:*:*:*:*:*
- cpe:2.3:a:sap:point_of_sale_xpress_server:1030:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.