CVE-2019-0363

Name of the Vulnerable Software and Affected Versions SAP HANA Extended Application Services versions prior to 1.0.118

Description The issue is related to insufficient input validation in the SAP HANA Extended Application Services development tool. This can be exploited by an attacker to gain unauthorized access to information about internal network ports or cause the server to overload.

Recommendations For versions prior to 1.0.118, update to version 1.0.118 or later to resolve the issue. As a temporary workaround, consider restricting access to the HTTP/REST endpoint to minimize the risk of exploitation.