Vulnerability Description
Under certain conditions SAP Business Process Automation (BPA) By Redwood, 9.00, 9.10, allows an attacker to access information which would otherwise be restricted.
CVSS Score
7.5
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Redwood | Sap Business Process Automation | 9.00 |
References
- http://www.securityfocus.com/bid/103375Third Party AdvisoryVDB Entry
- https://blogs.sap.com/2018/03/13/sap-security-patch-day-march-2018/Vendor Advisory
- https://launchpad.support.sap.com/#/notes/2596535Permissions Required
- http://www.securityfocus.com/bid/103375Third Party AdvisoryVDB Entry
- https://blogs.sap.com/2018/03/13/sap-security-patch-day-march-2018/Vendor Advisory
- https://launchpad.support.sap.com/#/notes/2596535Permissions Required
FAQ
What is CVE-2018-2400?
CVE-2018-2400 is a vulnerability with a CVSS score of 7.5 (HIGH). Under certain conditions SAP Business Process Automation (BPA) By Redwood, 9.00, 9.10, allows an attacker to access information which would otherwise be restricted.
How severe is CVE-2018-2400?
CVE-2018-2400 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-2400?
Check the references section above for vendor advisories and patch information. Affected products include: Redwood Sap Business Process Automation.