CVE-2019-0282
CVE-2019-0282
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS —EPSS 1.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
10 abr 2019Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
Several web pages in SAP NetWeaver Process Integration (Runtime Workbench), fixed in versions 7.10 to 7.11, 7.30, 7.31, 7.40, 7.50; can be accessed without user authentication, which might expose internal data like release information, Java package and Java object names which can be misused by the attacker.
Productos afectados
SAP SE · SAP NetWeaver Process Integration (Runtime Workbench)¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →