CVE-2019-0301
CVE-2019-0301
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 1.1%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
14 May 2019Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Under certain conditions, it is possible to request the modification of role or privilege assignments through SAP Identity Management REST Interface Version 2, which would otherwise be restricted only for viewing.
Affected products
SAP SE · SAP Identity Management (REST Interface)Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →