CyberSec.Space Logo
CVEブラウザに戻る

CVE-2019-0381

MEDIUM
5.5
CVSS Severity Score
EPSS Score0.1840%
EPSS Percentile22.00th
Published2019年10月8日
Last Modified2024年11月21日

Vulnerability Description

A binary planting in SAP SQL Anywhere, before version 17.0, SAP IQ, before version 16.1, and SAP Dynamic Tier, before versions 1.0 and 2.0, can result in the inadvertent access of files located in directories outside of the paths specified by the user.

Affected Platforms (CPE)

📦
Sap

Dynamic Tier

= 1.0
📦
Sap

Dynamic Tier

= 2.0
📦
Sap

Sap Iq

= 16.1
📦
Sap

Sql Anywhere

= 17.0

References & Advisories

🔗 https://launchpad.support.sap.com/#/notes/2792430
🔗 https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=528123050
🔗 https://launchpad.support.sap.com/#/notes/2792430
🔗 https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=528123050

関連する脆弱性情報

CVE-2019-002010.0

Juniper ATP ships with hard coded credentials in the Web Collector instance which gives an attacker the ability to take full contr...

CVE-2019-002210.0

Juniper ATP ships with hard coded credentials in the Cyphort Core instance which gives an attacker the ability to take full contro...

CVE-2019-390510.0

Zoho ManageEngine ADSelfService Plus 5.x before build 5703 has SSRF.

CVE-2019-623510.0

A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12...