Vulnerability Description
SAP Mobile Secure Android Application, Mobile-secure.apk Android client, before version 6.60.19942.0, allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service. Install the Mobile Secure Android client released in Mid-Oct 2018.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sap | Mobile Secure | < 6.60.19942.0 |
References
- http://www.securityfocus.com/bid/105900Third Party AdvisoryVDB Entry
- https://launchpad.support.sap.com/#/notes/2695896Permissions RequiredVendor Advisory
- https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=503809832Vendor Advisory
- http://www.securityfocus.com/bid/105900Third Party AdvisoryVDB Entry
- https://launchpad.support.sap.com/#/notes/2695896Permissions RequiredVendor Advisory
- https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=503809832Vendor Advisory
FAQ
What is CVE-2018-2482?
CVE-2018-2482 is a vulnerability with a CVSS score of 7.5 (HIGH). SAP Mobile Secure Android Application, Mobile-secure.apk Android client, before version 6.60.19942.0, allows an attacker to prevent legitimate users from accessing a service, either by crashing or flo...
How severe is CVE-2018-2482?
CVE-2018-2482 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-2482?
Check the references section above for vendor advisories and patch information. Affected products include: Sap Mobile Secure.