CVE-2018-2379
published 2018-02-14CVE-2018-2379: In SAP HANA Extended Application Services, 1.0, an unauthenticated user could test if a given username is valid by evaluating error messages of a specific…
medium6.5CVSS 3.0
AVNACLPRLUINSUCHINAN
In SAP HANA Extended Application Services, 1.0, an unauthenticated user could test if a given username is valid by evaluating error messages of a specific endpoint.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sap | hana_extended_application_services | — | — |
| sap_se | sap_hana_extended_application_services | — | — |