Vulnerability Description
Under certain conditions SAP Gateway of ABAP Application Server (fixed in SAP_GWFND 7.5, 7.51, 7.52, 7.53; SAP_BASIS 7.5) allows an attacker to access information which would otherwise be restricted.
CVSS Score
5.9
MEDIUM
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sap | Netweaver | 7.5 |
| Sap | Basis | 7.5 |
References
- http://www.securityfocus.com/bid/106471Third Party AdvisoryVDB Entry
- https://launchpad.support.sap.com/#/notes/2723142Permissions RequiredVendor Advisory
- https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=509151985Vendor Advisory
- http://www.securityfocus.com/bid/106471Third Party AdvisoryVDB Entry
- https://launchpad.support.sap.com/#/notes/2723142Permissions RequiredVendor Advisory
- https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=509151985Vendor Advisory
FAQ
What is CVE-2019-0248?
CVE-2019-0248 is a vulnerability with a CVSS score of 5.9 (MEDIUM). Under certain conditions SAP Gateway of ABAP Application Server (fixed in SAP_GWFND 7.5, 7.51, 7.52, 7.53; SAP_BASIS 7.5) allows an attacker to access information which would otherwise be restricted.
How severe is CVE-2019-0248?
CVE-2019-0248 has been rated MEDIUM with a CVSS base score of 5.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-0248?
Check the references section above for vendor advisories and patch information. Affected products include: Sap Netweaver, Sap Basis.