CVE-2018-2377

3 documents3 sources
Severity
6.5MEDIUM
EPSS
0.3%
top 47.25%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
SAP SE SAP Hana Extended Application ServicesSAP Hana Extended Application Services
Timeline
PublishedFeb 14
Latest updateMay 13

Description

In SAP HANA Extended Application Services, 1.0, some general server statistics and status information could be retrieved by unauthorized users.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages2 packages

🔴Vulnerability Details

2
GHSA
GHSA-33fh-7gm7-q4rf: In SAP HANA Extended Application Services, 12022-05-13
CVEList
CVE-2018-2377: In SAP HANA Extended Application Services, 12018-02-14
CVE-2018-2377 (MEDIUM CVSS 6.5) | In SAP HANA Extended Application Se | cvebase.io