CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-0282

Several web pages in SAP NetWeaver Process Integration (Runtime Workbench), fixed in versions 7.10 to 7.11, 7.30, 7.31, 7.40, 7.50; can be accessed without user authentication, which might expose internal data like release information, Java package and Java object names which can be misused by the attacker.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 36.6%

CVSS Severity

CVSS v3 Score 5.3

CVSS v2 Score 5.0

References

Products affected by CVE-2019-0282

Sap » Netweaver Process Integration » Version: 7.10

cpe:2.3:a:sap:netweaver_process_integration:7.10
Sap » Netweaver Process Integration » Version: 7.11

cpe:2.3:a:sap:netweaver_process_integration:7.11
Sap » Netweaver Process Integration » Version: 7.30

cpe:2.3:a:sap:netweaver_process_integration:7.30
Sap » Netweaver Process Integration » Version: 7.31

cpe:2.3:a:sap:netweaver_process_integration:7.31
Sap » Netweaver Process Integration » Version: 7.40

cpe:2.3:a:sap:netweaver_process_integration:7.40
Sap » Netweaver Process Integration » Version: 7.50

cpe:2.3:a:sap:netweaver_process_integration:7.50

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-0282

Products

Pricing

Contact Us