CVE-2019-0380

Name of the Vulnerable Software and Affected Versions SAP Landscape Management enterprise edition versions prior to 3.0

Description The issue is related to insufficient protection of registration data, which can lead to information disclosure. Under certain conditions, custom secure parameters' default values can be part of the application logs. This may allow a remote attacker to gain unauthorized access to protected information.

Recommendations For versions prior to 3.0, update to version 3.0 or later to resolve the issue. As a temporary workaround, consider restricting access to application logs to minimize the risk of exploitation.