CVE-2019-0255

Name of the Vulnerable Software and Affected Versions SAP NetWeaver AS ABAP Platform versions 7.73 through 7.75

Description The issue is related to insufficient input validation, which can be exploited by a remote attacker to elevate privileges. This behavior may lead to a situation where a business user gains access to the full SAP Menu, also known as the 'Easy Access Menu', potentially allowing any user to leverage privileges to business functionality.

Recommendations For versions 7.73 through 7.75, consider restricting access to the ABAP Server system to minimize the risk of exploitation until a proper fix is applied. As a temporary workaround, limit the access to the full SAP Menu to prevent potential misuse of business functionality. At the moment, there is no information about a newer version that contains a fix for this vulnerability.