CVE-2019-0261

Summary

Under certain circumstances, SAP HANA Extended Application Services, advanced model (XS advanced) does not perform authentication checks properly for XS advanced platform and business users. Fixed in 1.0.97 to 1.0.99 (running on SAP HANA 1 or SAP HANA 2 SPS0 (second S stands for stack)).

Affected Software

VendorProductVersion RangeStatus
SAP SESAP HANA Extended Application Services< 1.0.97 to 1.0.99 (running on SAP HANA 1 or SAP HANA 2 SPS0 (second S stands for stack)affected

Weaknesses

  • Missing Authentication Check

ADP Enrichment

CVE Program Container

Additional References

References