Synced 18 Jun 2026 05:58 UTC Account
← All products

CVE-2015-3979

HIGH severity · CVSS 7.5
7.5CVSS HIGH

Summary

Unspecified vulnerability in the Business Rules Framework (CRM-BF-BRF) in SAP CRM allows attackers to execute arbitrary code via unknown vectors, aka SAP Security Note 2097534.

Impact & exploitability

Attack vectorNetwork
Attack complexityLow
Privileges required
User interaction
Confidentiality impact
Integrity impact
Availability impact
Exploit probability (EPSS)2%

AV:N/AC:L/Au:N/C:P/I:P/A:P

Affected products we track (1)

Customer Relationship Management (CRM)

Recommendation

Apply the vendor fix promptly. Open any affected product above for its exact safe version.

Additional information