VYPR
Critical severity9.8NVD Advisory· Published Oct 16, 2017· Updated Jun 17, 2026

CVE-2017-15295

CVE-2017-15295

Description

Xpress Server in SAP POS does not require authentication for read/write/delete file access. This is SAP Security Note 2520064.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • cpe:2.3:a:sap:point_of_sale_xpress_server:1020:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:sap:point_of_sale_xpress_server:1020:*:*:*:*:*:*:*
    • cpe:2.3:a:sap:point_of_sale_xpress_server:1030:*:*:*:*:*:*:*
  • SAP/Xpress Serverllm-create

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.