Data Exposure Vulnerability in SAP Mobile Platform Offline OData Application
CVE-2018-2459
7.5HIGH
What is CVE-2018-2459?
The SAP Mobile Platform version 3.0 contains a vulnerability within its Offline OData applications. When utilizing Offline OData-supplied delta tokens, there are instances where users may inadvertently receive data values that belong to different users. This issue could compromise user data confidentiality, as sensitive information may be exposed to unauthorized users. Proper configuration and updates are essential to mitigate this risk.
Affected Version(s)
SAP Mobile Platform = 3.0