CVE-2019-0265

SLD Registration of ABAP Platform allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service. Fixed in versions KRNL32NUC 7.21, 7.21EXT, 7.22, 7.22EXT,KRNL32UC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64NUC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49,KRNL64UC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49. 7.73 KERNEL from 7.21 to 7.22, 7.45, 7.49, 7.53, 7.73, 7.75.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.9 MEDIUM
NETWORK
LOW
HIGH
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
sapCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 78%
VendorProductVersion
sapadvanced_business_application_programming_platform_kernel
7.21 ≤
𝑥
≤ 7.22
sapadvanced_business_application_programming_platform_kernel
7.45
sapadvanced_business_application_programming_platform_kernel
7.49
sapadvanced_business_application_programming_platform_kernel
7.53
sapadvanced_business_application_programming_platform_kernel
7.73
sapadvanced_business_application_programming_platform_kernel
7.75.
sapadvanced_business_application_programming_platform_krnl32nuc
7.21
sapadvanced_business_application_programming_platform_krnl32nuc
7.21ext:ext
sapadvanced_business_application_programming_platform_krnl32nuc
7.22
sapadvanced_business_application_programming_platform_krnl32nuc
7.22ext:ext
sapadvanced_business_application_programming_platform_krnl32uc
7.21
sapadvanced_business_application_programming_platform_krnl32uc
7.21ext:ext
sapadvanced_business_application_programming_platform_krnl32uc
7.22
sapadvanced_business_application_programming_platform_krnl32uc
7.22ext:ext
sapadvanced_business_application_programming_platform_krnl64nuc
7.21
sapadvanced_business_application_programming_platform_krnl64nuc
7.21ext:ext
sapadvanced_business_application_programming_platform_krnl64nuc
7.22
sapadvanced_business_application_programming_platform_krnl64nuc
7.22ext:ext
sapadvanced_business_application_programming_platform_krnl64nuc
7.49
sapadvanced_business_application_programming_platform_krnl64uc
7.21
sapadvanced_business_application_programming_platform_krnl64uc
7.21ext:ext
sapadvanced_business_application_programming_platform_krnl64uc
7.22
sapadvanced_business_application_programming_platform_krnl64uc
7.22ext:ext
sapadvanced_business_application_programming_platform_krnl64uc
7.49
sapadvanced_business_application_programming_platform_krnl64uc
7.73
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/106972
http://www.securityfocus.com/bid/107364
https://launchpad.support.sap.com/#/notes/2729710
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=510922943
http://www.securityfocus.com/bid/106972
http://www.securityfocus.com/bid/107364
https://launchpad.support.sap.com/#/notes/2729710
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=510922943