VYPR

ASE

by SAP

CVEs (2)

  • CVE-2016-7402CriNov 3, 2016
    risk 0.64cvss 9.8epss 0.01

    SAP ASE 16.0 SP02 PL03 and prior versions allow attackers who own SourceDB and TargetDB databases to elevate privileges to sa (system administrator) via dbcc import_sproc SQL injection.

  • CVE-2017-5371HigJan 23, 2017
    risk 0.49cvss 7.5epss 0.04

    Odata Server in SAP Adaptive Server Enterprise (ASE) 16 allows remote attackers to cause a denial of service (process crash) via a series of crafted requests, aka SAP Security Note 2330422.