Vulnerability Description
SAP Kernel (RFC), KRNL32NUC, KRNL32UC and KRNL64NUC before versions 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64UC, before versions 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, 7.73 and KERNEL before versions 7.21, 7.49, 7.53, 7.73, 7.76 SAP GUI for Windows (BC-FES-GUI) before versions 7.5, 7.6, and SAP GUI for Java (BC-FES-JAV) before version 7.5, allow an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sap | Sap Kernel | 7.21 |
| Sap | Sap Kernel Krnl32Nuc | 7.21 |
| Sap | Sap Kernel Krnl32Uc | 7.21 |
| Sap | Sap Kernel Krnl64Nuc | 7.21 |
| Sap | Sap Kernel Krnl64Uc | 7.21 |
References
- https://launchpad.support.sap.com/#/notes/2786151Permissions RequiredVendor Advisory
- https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=525962506Vendor Advisory
- https://launchpad.support.sap.com/#/notes/2786151Permissions RequiredVendor Advisory
- https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=525962506Vendor Advisory
FAQ
What is CVE-2019-0365?
CVE-2019-0365 is a vulnerability with a CVSS score of 7.5 (HIGH). SAP Kernel (RFC), KRNL32NUC, KRNL32UC and KRNL64NUC before versions 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64UC, before versions 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, 7.73 and KERNEL before versions 7.21, 7....
How severe is CVE-2019-0365?
CVE-2019-0365 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-0365?
Check the references section above for vendor advisories and patch information. Affected products include: Sap Sap Kernel, Sap Sap Kernel Krnl32Nuc, Sap Sap Kernel Krnl32Uc, Sap Sap Kernel Krnl64Nuc, Sap Sap Kernel Krnl64Uc.