CVE-2018-2499

Summary

A security weakness in SAP Financial Consolidation Cube Designer (BOBJ_EADES fixed in versions 8.0, 10.1) may allow an attacker to discover the password hash of an admin user.

Affected Software

VendorProductVersion RangeStatus
SAP SESAP Financial Consolidation Cube Designer (BOBJ_EADES)< 8.0affected
SAP SESAP Financial Consolidation Cube Designer (BOBJ_EADES)< 10.1affected

Weaknesses

  • Information Disclosure

ADP Enrichment

CVE Program Container

Additional References

References