CVE-2018-2441

EUVD-2018-14296
Under certain conditions the SAP Change and Transport System (ABAP), SAP KERNEL 32 NUC, SAP KERNEL 32 Unicode, SAP KERNEL 64 NUC, SAP KERNEL 64 Unicode 7.21, 7.21EXT, 7.22 and 7.22EXT; SAP KERNEL 7.21, 7.22, 7.45, 7.49, 7.53 and 7.73, allows an attacker to transport information which would otherwise be restricted.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 MEDIUM
NETWORK
LOW
HIGH
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 50%
Affected Products (NVD)
VendorProductVersion
sapsap_kernel
7.21
sapsap_kernel
7.21ext:ext
sapsap_kernel
7.22
sapsap_kernel
7.22ext:ext
sapsap_kernel
7.45
sapsap_kernel
7.49
sapsap_kernel
7.53
sapsap_kernel
7.73
𝑥
= Vulnerable software versions
References
http://www.securityfocus.com/bid/105090
https://launchpad.support.sap.com/#/notes/2671160
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=499352742
http://www.securityfocus.com/bid/105090
https://launchpad.support.sap.com/#/notes/2671160
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=499352742