Denial of Service Vulnerability in SAP Mobile Platform SDK
CVE-2019-0274

7.5HIGH

Key Information:

Vendor
SAP
Status
SAP Mobile Platform Sdk
Vendor
CVE Published:
12 March 2019

Summary

The SAP Mobile Platform SDK features a vulnerability that allows attackers to disrupt service accessibility for legitimate users through denial of service attacks. This can occur via service crashing or flooding, ultimately preventing users from reaching critical services. The vulnerability has been addressed in versions 3.1 SP03 PL02, SDK 3.1 SP04, and later, ensuring enhanced security measures are in place.

Affected Version(s)

SAP Mobile Platform SDK < 3.1 SP03 PL02 < 3.1 SP03 PL02

SAP Mobile Platform SDK < 3.1 SP04 < 3.1 SP04

References

http://www.securityfocus.com/bid/107360
vdb-entryx_refsource_BID
https://launchpad.support.sap.com/#/notes/2753497
x_refsource_MISC
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageI...
x_refsource_MISC

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.