PT-2019-11238 · Sap · Sap Enable Now

Published

2019-12-11

·

Updated

2020-08-24

·

CVE-2019-0404

CVSS v3.1

7.5

High

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions: SAP Enable Now versions prior to 1911
Description: The issue leads to information disclosure due to the leakage of network configuration details in server error messages.
Recommendations: For versions prior to 1911, update to version 1911 or later to resolve the issue.

Fix

Generation of Error Message Containing Sensitive Information

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-209

Related Identifiers

CVE-2019-0404

Affected Products

Sap Enable Now