CVE-2018-2440

Summary

Under certain circumstances SAP Dynamic Authorization Management (DAM) by NextLabs (Java Policy Controller versions 7.7 and 8.5) exposes sensitive information in the application logs.

Affected Software

VendorProductVersion RangeStatus
SAPSAP Dynamic Authorization Management (DAM) by NextLabs (Java Policy Controller versions)= 7.7affected
SAPSAP Dynamic Authorization Management (DAM) by NextLabs (Java Policy Controller versions)= 8.5affected

Weaknesses

  • Information Disclosure

ADP Enrichment

CVE Program Container

Additional References

References