CVE-2019-0365

SAP Kernel (RFC), KRNL32NUC, KRNL32UC and KRNL64NUC before versions 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64UC, before versions 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, 7.73 and KERNEL before versions 7.21, 7.49, 7.53, 7.73, 7.76 SAP GUI for Windows (BC-FES-GUI) before versions 7.5, 7.6, and SAP GUI for Java (BC-FES-JAV) before version 7.5, allow an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
sapCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 54%
VendorProductVersion
sapsap_kernel
7.21
sapsap_kernel
7.49
sapsap_kernel
7.53
sapsap_kernel
7.73
sapsap_kernel
7.76
sapsap_kernel_krnl32nuc
7.21
sapsap_kernel_krnl32nuc
7.21ext:ext
sapsap_kernel_krnl32nuc
7.22
sapsap_kernel_krnl32nuc
7.22ext:ext
sapsap_kernel_krnl32uc
7.21
sapsap_kernel_krnl32uc
7.21ext:ext
sapsap_kernel_krnl32uc
7.22
sapsap_kernel_krnl32uc
7.22ext:ext
sapsap_kernel_krnl64nuc
7.21
sapsap_kernel_krnl64nuc
7.21ext:ext
sapsap_kernel_krnl64nuc
7.22
sapsap_kernel_krnl64nuc
7.22ext:ext
sapsap_kernel_krnl64uc
7.21
sapsap_kernel_krnl64uc
7.21ext:ext
sapsap_kernel_krnl64uc
7.22
sapsap_kernel_krnl64uc
7.22ext:ext
sapsap_kernel_krnl64uc
7.49
sapsap_kernel_krnl64uc
7.73
𝑥
= Vulnerable software versions
References
https://launchpad.support.sap.com/#/notes/2786151
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=525962506
https://launchpad.support.sap.com/#/notes/2786151
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=525962506