Information Disclosure Vulnerability in SAP Adaptive Server Enterprise
CVE-2019-0402

4.4MEDIUM

Key Information:

Vendor: SAP
Status: SAP Adaptive Server Enterprise
Vendor: CVE Published:; 11 December 2019

What is CVE-2019-0402?

SAP Adaptive Server Enterprise, prior to versions 15.7 and 16.0, may inadvertently expose sensitive information to administrators under specific conditions. This vulnerability can potentially allow unauthorized access to confidential data, leading to risks in data privacy and security management.

Affected Version(s)

SAP Adaptive Server Enterprise before 15.7 and 16.0

References

https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageI...

x_refsource_CONFIRM

https://launchpad.support.sap.com/#/notes/2845780

x_refsource_CONFIRM

CVSS V3.1

Score:

4.4

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 11, 2019
Vulnerability Reserved
Nov 26, 2018