CVE-2018-2418

Sažetak

SAP MaxDB ODBC driver (all versions before 7.9.09.07) allows an attacker to inject code that can be executed by the application. An attacker could thereby control the behavior of the application.

Reference

http://www.securityfocus.com/bid/104115
https://blogs.sap.com/2018/05/08/sap-security-patch-day-may-2018/
https://launchpad.support.sap.com/#/notes/2610231

CVSS

Base:	7.5
Impact:	6.4
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

09-10-2019 - 23:40

Objavljeno

09-05-2018 - 20:29