CVE-2019-0261

Name of the Vulnerable Software and Affected Versions SAP HANA Extended Application Services versions prior to 1.0.97

Description The issue is related to insufficient authentication checks in SAP HANA Extended Application Services, which can be exploited by a remote attacker using a specially crafted HTTP request. This could potentially allow the execution of arbitrary code.

Recommendations For versions prior to 1.0.97, update to version 1.0.97 or later to resolve the issue. As a temporary workaround, consider restricting access to the XS advanced platform and business users until the update is applied.