PT-2018-15570 · Sap · Sap Srm-Mdm

Published

2018-08-14

Updated

2020-08-24

CVE-2018-2448

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions SAP SRM-MDM (CATALOG versions 3.0, 7.01, 7.02)

Description The issue allows an attacker to access information about user existence under certain conditions, which would otherwise be restricted.

Recommendations For versions 3.0, 7.01, and 7.02, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2018-2448

Affected Products

Sap Srm-Mdm

PT-2018-15570 · Sap · Sap Srm-Mdm

CVE-2018-2448

Related Identifiers

Affected Products

References · 5