CyberSec.Space Logo
Back to CVE Browser

CVE-2019-0270

HIGH
8.8
CVSS Severity Score
EPSS Score0.0130%
EPSS Percentile18.15th
PublishedMar 12, 2019
Last ModifiedNov 21, 2024

Vulnerability Description

ABAP Server of SAP NetWeaver and ABAP Platform fail to perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. This has been corrected in the following versions: KRNL32NUC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL32UC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64NUC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, 7.74, KRNL64UC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, 7.73, 7.74, 8.04, KERNEL 7.21, 7.45, 7.49, 7.53, 7.73, 7.74, 7.75, 8.04.

Affected Platforms (CPE)

πŸ“¦
Sap

Advanced Business Application Programming Platform Kernel

= 7.15
πŸ“¦
Sap

Advanced Business Application Programming Platform Kernel

= 7.21
πŸ“¦
Sap

Advanced Business Application Programming Platform Kernel

= 7.22
πŸ“¦
Sap

Advanced Business Application Programming Platform Kernel

= 7.49
πŸ“¦
Sap

Advanced Business Application Programming Platform Kernel

= 7.53
πŸ“¦
Sap

Advanced Business Application Programming Platform Kernel

= 7.73
πŸ“¦
Sap

Advanced Business Application Programming Platform Kernel

= 7.74
πŸ“¦
Sap

Advanced Business Application Programming Platform Kernel

= 7.75
πŸ“¦
Sap

Advanced Business Application Programming Platform Kernel

= 8.04
πŸ“¦
Sap

Advanced Business Application Programming Platform Krnl32nuc

= 7.21
πŸ“¦
Sap

Advanced Business Application Programming Platform Krnl32nuc

= 7.21ext
πŸ“¦
Sap

Advanced Business Application Programming Platform Krnl32nuc

= 7.22
πŸ“¦
Sap

Advanced Business Application Programming Platform Krnl32nuc

= 7.22ext
πŸ“¦
Sap

Advanced Business Application Programming Platform Krnl32uc

= 7.21
πŸ“¦
Sap

Advanced Business Application Programming Platform Krnl32uc

= 7.21ext
πŸ“¦
Sap

Advanced Business Application Programming Platform Krnl32uc

= 7.22
πŸ“¦
Sap

Advanced Business Application Programming Platform Krnl32uc

= 7.22ext
πŸ“¦
Sap

Advanced Business Application Programming Platform Krnl64nuc

= 7.21
πŸ“¦
Sap

Advanced Business Application Programming Platform Krnl64nuc

= 7.21ext
πŸ“¦
Sap

Advanced Business Application Programming Platform Krnl64nuc

= 7.22
πŸ“¦
Sap

Advanced Business Application Programming Platform Krnl64nuc

= 7.22ext
πŸ“¦
Sap

Advanced Business Application Programming Platform Krnl64uc

= 7.21
πŸ“¦
Sap

Advanced Business Application Programming Platform Krnl64uc

= 7.21ext
πŸ“¦
Sap

Advanced Business Application Programming Platform Krnl64uc

= 7.22
πŸ“¦
Sap

Advanced Business Application Programming Platform Krnl64uc

= 7.22ext
πŸ“¦
Sap

Advanced Business Application Programming Platform Krnl64uc

= 7.49
πŸ“¦
Sap

Advanced Business Application Programming Platform Krnl64uc

= 7.73
πŸ“¦
Sap

Advanced Business Application Programming Platform Krnl64uc

= 7.74
πŸ“¦
Sap

Advanced Business Application Programming Platform Krnl64uc

= 8.04

References & Advisories

πŸ”— http://www.securityfocus.com/bid/107377
πŸ”— https://launchpad.support.sap.com/#/notes/2727689
πŸ”— https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=515408080
πŸ”— http://www.securityfocus.com/bid/107377
πŸ”— https://launchpad.support.sap.com/#/notes/2727689
πŸ”— https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=515408080

Related Vulnerabilities

CVE-2026-53430

Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in elixir-grpc grpc (GRPC.Compressor.Gzip, GRPC.Mes...

CVE-2026-48854

Allocation of Resources Without Limits or Throttling vulnerability in elixir-grpc grpc allows unauthenticated attackers to exhaust...

CVE-2026-48853

Deserialization of Untrusted Data and Allocation of Resources Without Limits or Throttling vulnerabilities in elixir-grpc grpc all...

CVE-2026-487237.8

The browserstack-cypress-cli is BrowserStack's CLI which allows users to run Cypress tests on BrowserStack. Versions prior to 1.36...