Description

A security vulnerability exists in SAP B2B/B2C CRM that allows an attacker to read arbitrary local files from the affected server. The file initProductCatalog.do is affected and this vulnerability can be exploited via the GET parameter forwardPath.

Remediation

Upgrade SAP B2B/B2C CRM to the latest version.
Please consult the SAP Security Note 1870255656 for more information about the fix.

References

SAP B2B / B2C CRM 2.x < 4.x - Local File Inclusion

Related Vulnerabilities

WordPress Plugin Subscribe to Comments Local File Inclusion (2.1.2)

MODX Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-10038)

WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Local File Inclusion (1.3.64)

PHP-Fusion Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2013-1806)

WordPress Plugin Ajax Pagination (twitter Style) Local File Inclusion (1.1)

Severity

High

Classification

CWE-22 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N

Tags

File Inclusion