CVE-2018-2428

Summary

Under certain conditions SAP UI5 Handler allows an attacker to access information which would otherwise be restricted. Software components affected are: SAP Infrastructure 1.0, SAP UI 7.4, 7.5, 7.51, 7.52 and version 2.0 of SAP UI for SAP NetWeaver 7.00.

Affected Software

VendorProductVersion RangeStatus
SAP SESAP Infrastructure1.0affected
SAP SESAP UI7.4affected
SAP SESAP UI7.5affected
SAP SESAP UI7.51affected
SAP SESAP UI7.52affected
SAP SESAP UI for SAP NetWeaver 7.002.0affected

Weaknesses

  • Information Disclosure

ADP Enrichment

CVE Program Container

Additional References

References