PT-2018-15554 · Sap · Sap Ui5 Handler+2

Published

2018-06-12

Updated

2020-08-24

CVE-2018-2428

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions SAP UI5 Handler versions 7.4 through 7.52 SAP Infrastructure version 1.0 SAP UI for SAP NetWeaver version 2.0

Description The issue allows an attacker to access restricted information under certain conditions.

Recommendations For SAP UI5 Handler versions 7.4 through 7.52, update to a version that includes the fix for this issue. For SAP Infrastructure version 1.0, update to a version that includes the fix for this issue. For SAP UI for SAP NetWeaver version 2.0, update to a version that includes the fix for this issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2018-2428

Affected Products

Sap Infrastructure

Sap Ui For Sap Netweaver

Sap Ui5 Handler

PT-2018-15554 · Sap · Sap Ui5 Handler+2

CVE-2018-2428

Related Identifiers

Affected Products

References · 5