CVE-2018-2368

Summary

SAP NetWeaver System Landscape Directory, LM-CORE 7.10, 7.20, 7.30, 7.31, 7.40, does not perform any authentication checks for functionalities that require user identity.

Affected Software

VendorProductVersion RangeStatus
SAP SESAP NetWeaver System Landscape Directory, LM-Core7.10affected
SAP SESAP NetWeaver System Landscape Directory, LM-Core7.20affected
SAP SESAP NetWeaver System Landscape Directory, LM-Core7.30affected
SAP SESAP NetWeaver System Landscape Directory, LM-Core7.31affected
SAP SESAP NetWeaver System Landscape Directory, LM-Core7.40affected

Weaknesses

  • Missing Authentication Check

ADP Enrichment

CVE Program Container

Additional References

References