CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-0403

SAP Enable Now, before version 1911, allows an attacker to input commands into the CSV files, which will be executed when opened, leading to CSV Command Injection.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.066

EPSS Ranking 90.7%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

https://launchpad.support.sap.com/#/notes/2845183
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=533660397
https://launchpad.support.sap.com/#/notes/2845183
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=533660397

Products affected by CVE-2019-0403

Sap » Enable Now » Version: N/A

cpe:2.3:a:sap:enable_now:-
Sap » Enable Now » Version: 10

cpe:2.3:a:sap:enable_now:10
Sap » Enable Now » Version: 1902

cpe:2.3:a:sap:enable_now:1902
Sap » Enable Now » Version: 1908

cpe:2.3:a:sap:enable_now:1908

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-0403

Products

Pricing

Contact Us