CVE-2019-0364
published 2019-09-10CVE-2019-0364: Attackers may misuse an HTTP/REST endpoint of SAP HANA Extended Application Services (Advanced model), before version 1.0.118, to enumerate open ports.
medium4.3CVSS 3.1
AVNACLPRLUINSUCLINAN
Attackers may misuse an HTTP/REST endpoint of SAP HANA Extended Application Services (Advanced model), before version 1.0.118, to enumerate open ports.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sap | hana_extended_application_services | < 1.0.118 | 1.0.118 |
| sap_se | sap_hana_extended_application_services | < 1.0.118 | 1.0.118 |