Authentication Bypass in SAP Startup Service Affects Multiple Versions
CVE-2018-2360
7.5HIGH
What is CVE-2018-2360?
The SAP Startup Service in various versions of SAP KERNEL lacks an essential authentication check for functionalities requiring user identity. This oversight can lead to unauthorized users being able to consume file system storage, potentially resulting in resource depletion and disruption of service.
Affected Version(s)
SAP Startup Service 7.45
SAP Startup Service 7.49
SAP Startup Service 7.52