CVE-2019-0247

Sažetak

SAP Cloud Connector, before version 2.11.3, allows an attacker to inject code that can be executed by the application. An attacker could thereby control the behavior of the application.

Reference

https://launchpad.support.sap.com/#/notes/2696233
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=509151985

CVSS

Base:	7.5
Impact:	6.4
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

17-01-2019 - 18:35

Objavljeno

08-01-2019 - 20:29