5.9

CVE-2019-0248

Under certain conditions SAP Gateway of ABAP Application Server (fixed in SAP_GWFND 7.5, 7.51, 7.52, 7.53; SAP_BASIS 7.5) allows an attacker to access information which would otherwise be restricted.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
SAPNetweaver Version7.5
SAPNetweaver Version7.51
SAPNetweaver Version7.52
SAPNetweaver Version7.53
SAPBasis Version7.5
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.56% 0.721
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.9 2.2 3.6
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
nvd@nist.gov 4.3 8.6 2.9
AV:N/AC:M/Au:N/C:P/I:N/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=509151985
Vendor Advisory
http://www.securityfocus.com/bid/106471
Third Party Advisory
VDB Entry
https://launchpad.support.sap.com/#/notes/2723142
Vendor Advisory
Permissions Required