CVE-2019-0306
published 2019-06-12CVE-2019-0306: SAP HANA Extended Application Services (advanced model), version 1, allows authenticated low privileged XS Advanced Platform users such as SpaceAuditors to…
medium4.3CVSS 3.0
AVNACLPRLUINSUCLINAN
SAP HANA Extended Application Services (advanced model), version 1, allows authenticated low privileged XS Advanced Platform users such as SpaceAuditors to execute requests to obtain a complete list of SAP HANA user IDs and names.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sap | hana_extended_application_services | — | — |
| sap_se | sap_hana_extended_application_services | < 1.0 | 1.0 |