PT-2019-2026 · Sap · Sap Disclosure Management

Publicado

2019-02-12

Atualizado

2020-08-24

CVE-2019-0258

CVSS v3.1

8.8

Alta

Vetor

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions SAP Disclosure Management version 10.01

Description The issue is related to insufficient authorization checks for authenticated users, allowing for escalation of privileges. It can be exploited by a remote attacker using a specially crafted request, potentially leading to privilege escalation.

Recommendations For SAP Disclosure Management version 10.01, apply the necessary patches or updates to ensure proper authorization checks are in place to prevent privilege escalation.

Correção

Improper Authorization

Missing Authorization

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-285CWE-862

Identificadores relacionados

BDU:2019-01737

CVE-2019-0258

Produtos afetados

Sap Disclosure Management

PT-2019-2026 · Sap · Sap Disclosure Management

CVE-2019-0258

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6