SAP Enterprise Financial Services CVE-2018-2419 Remote Authorization Bypass Vulnerability
BID:104116
CVE-2018-2419 |Info
SAP Enterprise Financial Services CVE-2018-2419 Remote Authorization Bypass Vulnerability
| Bugtraq ID: | 104116 |
| Class: | Input Validation Error |
| CVE: |
CVE-2018-2419 |
| Remote: | Yes |
| Local: | No |
| Published: | May 08 2018 12:00AM |
| Updated: | May 08 2018 12:00AM |
| Credit: | The vendor reported this issue. |
| Vulnerable: |
SAP SAPSCORE 1.12 SAP SAPSCORE 1.11 SAP S4CORE 1.02 SAP S4CORE 1.01 SAP Enterprise Financial Services 0 SAP EA-FINSERV 8.0 SAP EA-FINSERV 6.18 SAP EA-FINSERV 6.17 SAP EA-FINSERV 6.16 SAP EA-FINSERV 6.06 SAP EA-FINSERV 6.05 SAP EA-FINSERV 6.04 |
| Not Vulnerable: | |
Discussion
SAP Enterprise Financial Services CVE-2018-2419 Remote Authorization Bypass Vulnerability
SAP Enterprise Financial Services is prone to an authorization-bypass vulnerability.
Attackers can exploit this issue to gain unauthorized access and obtain sensitive information. This may aid in further attacks.
SAP Enterprise Financial Services is prone to an authorization-bypass vulnerability.
Attackers can exploit this issue to gain unauthorized access and obtain sensitive information. This may aid in further attacks.
References
SAP Enterprise Financial Services CVE-2018-2419 Remote Authorization Bypass Vulnerability
References:
References:
- SAP Homepage (SAP)
- SAP Security Note # 2596627 (SAP)
- SAP Security Patch Day �?? May 2018 (SAP)