Vulnerability Details CVE-2019-0248
Under certain conditions SAP Gateway of ABAP Application Server (fixed in SAP_GWFND 7.5, 7.51, 7.52, 7.53; SAP_BASIS 7.5) allows an attacker to access information which would otherwise be restricted.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 58.8%
CVSS Severity
CVSS v3 Score 5.9
CVSS v2 Score 4.3
References
- http://www.securityfocus.com/bid/106471
- https://launchpad.support.sap.com/#/notes/2723142
- https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=509151985
- http://www.securityfocus.com/bid/106471
- https://launchpad.support.sap.com/#/notes/2723142
- https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=509151985
Products affected by CVE-2019-0248
-
cpe:2.3:a:sap:basis:7.5
-
cpe:2.3:a:sap:netweaver:7.5
-
cpe:2.3:a:sap:netweaver:7.51
-
cpe:2.3:a:sap:netweaver:7.52
-
cpe:2.3:a:sap:netweaver:7.53