CVE-2019-0277

Summary

SAP HANA extended application services, version 1, advanced does not sufficiently validate an XML document accepted from an authenticated developer with privileges to the SAP space (XML External Entity vulnerability).

Affected Software

VendorProductVersion RangeStatus
SAP SESAP HANA Extended Application Services< 1affected

Weaknesses

  • XML External Entity

ADP Enrichment

CVE Program Container

Additional References

References