CVE-2019-0306
N/A
N/A
Summary
SAP HANA Extended Application Services (advanced model), version 1, allows authenticated low privileged XS Advanced Platform users such as SpaceAuditors to execute requests to obtain a complete list of SAP HANA user IDs and names.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| SAP SE | SAP HANA Extended Application Services (advanced model) | < 1.0 | affected |
Weaknesses
- Information Disclosure
ADP Enrichment
CVE Program Container
Additional References
- https://launchpad.support.sap.com/#/notes/2771128
- https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=521864242
References
- https://launchpad.support.sap.com/#/notes/2771128
- https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=521864242
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.