CyberSec.Space Logo
Back to CVE Browser

CVE-2019-0381

MEDIUM
5.5
CVSS Severity Score
EPSS Score0.1840%
EPSS Percentile22.00th
PublishedOct 8, 2019
Last ModifiedNov 21, 2024

Vulnerability Description

A binary planting in SAP SQL Anywhere, before version 17.0, SAP IQ, before version 16.1, and SAP Dynamic Tier, before versions 1.0 and 2.0, can result in the inadvertent access of files located in directories outside of the paths specified by the user.

Affected Platforms (CPE)

πŸ“¦
Sap

Dynamic Tier

= 1.0
πŸ“¦
Sap

Dynamic Tier

= 2.0
πŸ“¦
Sap

Sap Iq

= 16.1
πŸ“¦
Sap

Sql Anywhere

= 17.0

References & Advisories

πŸ”— https://launchpad.support.sap.com/#/notes/2792430
πŸ”— https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=528123050
πŸ”— https://launchpad.support.sap.com/#/notes/2792430
πŸ”— https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=528123050

Related Vulnerabilities

CVE-2019-002010.0

Juniper ATP ships with hard coded credentials in the Web Collector instance which gives an attacker the ability to take full contr...

CVE-2019-002210.0

Juniper ATP ships with hard coded credentials in the Cyphort Core instance which gives an attacker the ability to take full contro...

CVE-2019-390510.0

Zoho ManageEngine ADSelfService Plus 5.x before build 5703 has SSRF.

CVE-2019-623510.0

A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12...