CVE-2018-2374
published 2018-02-14CVE-2018-2374: In SAP HANA Extended Application Services, 1.0, a controller user who has SpaceAuditor authorization in a specific space could retrieve sensitive application…
medium6.5CVSS 3.0
AVNACLPRLUINSUCHINAN
In SAP HANA Extended Application Services, 1.0, a controller user who has SpaceAuditor authorization in a specific space could retrieve sensitive application data like service bindings within that space.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sap | hana_extended_application_services | — | — |
| sap_se | sap_hana_extended_application_services | — | — |