CVE-2019-0393

Summary

An SQL Injection vulnerability in SAP Quality Management (corrected in S4CORE versions 1.0, 1.01, 1.02, 1.03) allows an attacker to carry out targeted database queries that can read individual fields of historical inspection results.

Affected Software

VendorProductVersion RangeStatus
SAP SESAP Quality Management (S4CORE)< 1.0affected
SAP SESAP Quality Management (S4CORE)< 1.01affected
SAP SESAP Quality Management (S4CORE)< 1.02affected
SAP SESAP Quality Management (S4CORE)< 1.03affected

Weaknesses

  • SQL Injection

ADP Enrichment

CVE Program Container

Additional References

References