CVE-2018-2457

3 documents3 sources

Severity

6.5MEDIUM

EPSS

0.3%

top 51.00%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

SAP SAP Adaptive Server Enterprise SAP Adaptive Server Enterprise

Timeline

PublishedSep 11

Latest updateMay 13

Description

Under certain conditions SAP Adaptive Server Enterprise, version 16.0, allows some privileged users to access information which would otherwise be restricted.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages2 packages

▶CVEListV5sap/sap_adaptive_server_enterprise= 16.0

▶NVDsap/adaptive16.0

🔴Vulnerability Details

GHSA

GHSA-5cfg-qpjj-28q7: Under certain conditions SAP Adaptive Server Enterprise, version 16↗2022-05-13

▶

CVEList

CVE-2018-2457: Under certain conditions SAP Adaptive Server Enterprise, version 16↗2018-09-11

▶