CVE-2019-0365
N/A
N/A
Summary
SAP Kernel (RFC), KRNL32NUC, KRNL32UC and KRNL64NUC before versions 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64UC, before versions 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, 7.73 and KERNEL before versions 7.21, 7.49, 7.53, 7.73, 7.76 SAP GUI for Windows (BC-FES-GUI) before versions 7.5, 7.6, and SAP GUI for Java (BC-FES-JAV) before version 7.5, allow an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| SAP SE | SAP Kernel (KRNL32NUC) | < 7.21 | affected |
| SAP SE | SAP Kernel (KRNL32NUC) | < 7.21EXT | affected |
| SAP SE | SAP Kernel (KRNL32NUC) | < 7.22 | affected |
| SAP SE | SAP Kernel (KRNL32NUC) | < 7.22EXT | affected |
| SAP SE | SAP Kernel (KRNL32UC) | < 7.21 | affected |
| SAP SE | SAP Kernel (KRNL32UC) | < 7.21EXT | affected |
| SAP SE | SAP Kernel (KRNL32UC) | < 7.22 | affected |
| SAP SE | SAP Kernel (KRNL32UC) | < 7.22EXT | affected |
| SAP SE | SAP Kernel (KRNL64NUC) | < 7.21 | affected |
| SAP SE | SAP Kernel (KRNL64NUC) | < 7.21EXT | affected |
| SAP SE | SAP Kernel (KRNL64NUC) | < 7.22 | affected |
| SAP SE | SAP Kernel (KRNL64NUC) | < 7.22EXT | affected |
| SAP SE | SAP Kernel (KRNL64NUC) | < 7.49 | affected |
| SAP SE | SAP Kernel (KRNL64UC) | < 7.21 | affected |
| SAP SE | SAP Kernel (KRNL64UC) | < 7.21EXT | affected |
| SAP SE | SAP Kernel (KRNL64UC) | < 7.22 | affected |
| SAP SE | SAP Kernel (KRNL64UC) | < 7.22EXT | affected |
| SAP SE | SAP Kernel (KRNL64UC) | < 7.49 | affected |
| SAP SE | SAP Kernel (KRNL64UC) | < 7.73 | affected |
| SAP SE | SAP Kernel (KERNEL) | < 7.21 | affected |
| SAP SE | SAP Kernel (KERNEL) | < 7.49 | affected |
| SAP SE | SAP Kernel (KERNEL) | < 7.53 | affected |
| SAP SE | SAP Kernel (KERNEL) | < 7.73 | affected |
| SAP SE | SAP Kernel (KERNEL) | < 7.76 | affected |
| SAP SE | SAP GUI for Windows (BC-FES-GUI) | < 7.5 | affected |
| SAP SE | SAP GUI for Windows (BC-FES-GUI) | < 7.6 | affected |
| SAP SE | SAP GUI for Java (BC-FES-JAV) | < 7.5 | affected |
Weaknesses
- Denial of Service
ADP Enrichment
CVE Program Container
Additional References
- https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=525962506
- https://launchpad.support.sap.com/#/notes/2786151
References
- https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=525962506
- https://launchpad.support.sap.com/#/notes/2786151
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.