7.1
CVE-2019-0363
- EPSS 0.37%
- Veröffentlicht 10.09.2019 17:15:11
- Zuletzt bearbeitet 21.11.2024 04:16:44
- Quelle cna@sap.com
- CVE-Watchlists
- Unerledigt
LoginAttackers may misuse an HTTP/REST endpoint of SAP HANA Extended Application Services (Advanced model), before version 1.0.118, to overload the server or retrieve information about internal network ports.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
SAP ≫ Hana Extended Application Services Version < 1.0.118
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.37% | 0.559 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.1 | 2.8 | 4.2 |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H
|
| nvd@nist.gov | 5.5 | 8 | 4.9 |
AV:N/AC:L/Au:S/C:P/I:N/A:P
|