CVE-2018-2469SAP Adaptive Server Enterprise vulnerability

4 documents4 sources
Severity
7.5HIGHNVD
EPSS
0.3%
top 42.66%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
SAP Adaptive Server EnterpriseSAP Adaptive Server Enterprise
Timeline
PublishedOct 9
Latest updateMay 13

Description

Under certain conditions SAP Adaptive Server Enterprise (ASE), versions 15.7 and 16.0, allows an attacker to access information which would otherwise be restricted.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

CVEListV5sap/sap_adaptive_server_enterprise15.7, 16.0+1
NVDsap/adaptive15.7, 16.0+1

🔴Vulnerability Details

2
GHSA
GHSA-6v36-q94p-qrcw: Under certain conditions SAP Adaptive Server Enterprise (ASE), versions 152022-05-13
CVEList
CVE-2018-2469: Under certain conditions SAP Adaptive Server Enterprise (ASE), versions 152018-10-09

📋Vendor Advisories

1
Apache
Apache nifi: CVE-2018-1310
CVE-2018-2469 — SAP vulnerability | cvebase