PT-2019-2026 · Sap · Sap Disclosure Management

Published

2019-02-12

Updated

2020-08-24

CVE-2019-0258

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions SAP Disclosure Management version 10.01

Description The issue is related to insufficient authorization checks for authenticated users, allowing for escalation of privileges. It can be exploited by a remote attacker using a specially crafted request, potentially leading to privilege escalation.

Recommendations For SAP Disclosure Management version 10.01, apply the necessary patches or updates to ensure proper authorization checks are in place to prevent privilege escalation.

Fix

Improper Authorization

Missing Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-285CWE-862

Related Identifiers

BDU:2019-01737

CVE-2019-0258

Affected Products

Sap Disclosure Management

PT-2019-2026 · Sap · Sap Disclosure Management

CVE-2019-0258

Weakness Enumeration

Related Identifiers

Affected Products

References · 6