CVE-2019-0381

Summary

A binary planting in SAP SQL Anywhere, before version 17.0, SAP IQ, before version 16.1, and SAP Dynamic Tier, before versions 1.0 and 2.0, can result in the inadvertent access of files located in directories outside of the paths specified by the user.

Affected Software

VendorProductVersion RangeStatus
SAP SESAP IQ< 16.1affected
SAP SESAP SQL Anywhere< 17.0affected
SAP SESAP Dynamic Tiering< 1.0affected
SAP SESAP Dynamic Tiering< 2.0affected

Weaknesses

  • Other

ADP Enrichment

CVE Program Container

Additional References

References