CVE-2018-2441

Under certain conditions the SAP Change and Transport System (ABAP), SAP KERNEL 32 NUC, SAP KERNEL 32 Unicode, SAP KERNEL 64 NUC, SAP KERNEL 64 Unicode 7.21, 7.21EXT, 7.22 and 7.22EXT; SAP KERNEL 7.21, 7.22, 7.45, 7.49, 7.53 and 7.73, allows an attacker to transport information which would otherwise be restricted.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.5 MEDIUM
NETWORK
LOW
HIGH
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N
sapCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 54%
VendorProductVersion
sapsap_kernel
7.21
sapsap_kernel
7.21ext:ext
sapsap_kernel
7.22
sapsap_kernel
7.22ext:ext
sapsap_kernel
7.45
sapsap_kernel
7.49
sapsap_kernel
7.53
sapsap_kernel
7.73
𝑥
= Vulnerable software versions
References
http://www.securityfocus.com/bid/105090
https://launchpad.support.sap.com/#/notes/2671160
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=499352742
http://www.securityfocus.com/bid/105090
https://launchpad.support.sap.com/#/notes/2671160
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=499352742