CVE-2019-0402

4.4MEDIUM

Key Information:

Vendor: SAP
Status: SAP Adaptive Server Enterprise
Vendor: CVE Published:; 11 December 2019

Summary

SAP Adaptive Server Enterprise, before versions 15.7 and 16.0, under certain conditions exposes some sensitive information to the admin, leading to Information Disclosure.

Affected Version(s)

SAP Adaptive Server Enterprise before 15.7 and 16.0

References

https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageI...

x_refsource_CONFIRM

https://launchpad.support.sap.com/#/notes/2845780

x_refsource_CONFIRM

CVSS V3.1

Score:

4.4

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Dec 11, 2019
Vulnerability Reserved
Nov 26, 2018