CVE-2019-0318

Name of the Vulnerable Software and Affected Versions SAP NetWeaver Application Server for Java (Startup Framework) versions 7.21, 7.22, 7.45, 7.49, and 7.53

Description The issue is related to the lack of protection for internal data in the Startup Framework component of the SAP NetWeaver Application Server for Java. This allows an attacker to access restricted information under certain conditions. The exploitation of this issue may enable a remote attacker to disclose protected information.

Recommendations For versions 7.21, 7.22, 7.45, 7.49, and 7.53, update to a version that includes the fix for this issue to prevent unauthorized access to restricted information. At the moment, there is no information about a newer version that contains a fix for this vulnerability.