CVE-2019-0285

Sažetak

The .NET SDK WebForm Viewer in SAP Crystal Reports for Visual Studio (fixed in version 2010) discloses sensitive database information including credentials which can be misused by the attacker.

Reference

http://packetstormsecurity.com/files/153471/SAP-Crystal-Reports-Information-Disclosure.html
https://launchpad.support.sap.com/#/notes/2687663
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=517899114

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

24-08-2020 - 17:37

Objavljeno

10-04-2019 - 21:29