← back
CVE-2019-0367

CVE-2019-0367

EPSS 0.5%
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 0.5%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
08 Oct 2019Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
SAP NetWeaver Process Integration (B2B Toolkit), before versions 1.0 and 2.0, does not perform necessary authorization checks for an authenticated user, allowing the import of B2B table content that leads to Missing Authorization Check.
Affected products
SAP SE · SAP NetWeaver Process Integration (B2B Toolkit)

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://launchpad.support.sap.com/#/notes/2805777https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=528123050