PT-2018-15494 · Sap · Sap Kernel

Published

2018-01-09

Updated

2018-01-29

CVE-2018-2360

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions SAP KERNEL versions 7.45 through 7.52

Description The issue is related to the SAP Startup Service, which lacks an authentication check for certain functionalities that require user identity. This omission can lead to the consumption of file system storage.

Recommendations For SAP KERNEL versions 7.45 through 7.52, apply the necessary patches or updates to include authentication checks for functionalities requiring user identity.

Fix

Missing Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-306

Related Identifiers

CVE-2018-2360

Affected Products

Sap Kernel

PT-2018-15494 · Sap · Sap Kernel

CVE-2018-2360

Weakness Enumeration

Related Identifiers

Affected Products

References · 5