CVE-2019-0391

Summary

Under certain conditions SAP NetWeaver AS Java (corrected in 7.10, 7.20, 7.30, 7.31, 7.40, 7.50) allows an attacker to access information which would otherwise be restricted.

Affected Software

VendorProductVersion RangeStatus
SAP SESAP NetWeaver AS Java< 7.10affected
SAP SESAP NetWeaver AS Java< 7.20affected
SAP SESAP NetWeaver AS Java< 7.30affected
SAP SESAP NetWeaver AS Java< 7.31affected
SAP SESAP NetWeaver AS Java< 7.40affected
SAP SESAP NetWeaver AS Java< 7.50affected

Weaknesses

  • Information Disclosure

ADP Enrichment

CVE Program Container

Additional References

References