CVE-2019-0404

CWE-2093 documents3 sources
Severity
7.5HIGH
EPSS
0.3%
top 48.55%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
SAP Enable NOWSAP SE SAP Enable NOW
Timeline
PublishedDec 11
Latest updateMay 24

Description

SAP Enable Now, before version 1911, leaks information about network configuration in the server error messages, leading to Information Disclosure.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

NVDsap/enable_now< 1911
CVEListV5sap_se/sap_enable_nowbefore 1911

🔴Vulnerability Details

2
GHSA
GHSA-3pgx-5h9r-2mg2: SAP Enable Now, before version 1911, leaks information about network configuration in the server error messages, leading to Information Disclosure2022-05-24
CVEList
CVE-2019-0404: SAP Enable Now, before version 1911, leaks information about network configuration in the server error messages, leading to Information Disclosure2019-12-11
CVE-2019-0404 (HIGH CVSS 7.5) | SAP Enable Now | cvebase.io