mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-29 05:56:59 +00:00
94 lines
3.4 KiB
JSON
94 lines
3.4 KiB
JSON
{
|
|
"CVE_data_meta": {
|
|
"ASSIGNER": "cna@sap.com",
|
|
"ID": "CVE-2018-2494",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "SAP Basis (AS ABAP of SAP NetWeaver)",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_name": "=",
|
|
"version_value": "7.00 to 7.02"
|
|
},
|
|
{
|
|
"version_name": "=",
|
|
"version_value": "7.10 to 7.30"
|
|
},
|
|
{
|
|
"version_name": "=",
|
|
"version_value": "7.31"
|
|
},
|
|
{
|
|
"version_name": "=",
|
|
"version_value": "7.40"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "SAP Basis (ABAP Platform)",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_name": "=",
|
|
"version_value": "7.50 to 7.53"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name": "SAP"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format": "MITRE",
|
|
"data_type": "CVE",
|
|
"data_version": "4.0",
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "Necessary authorization checks for an authenticated user, resulting in escalation of privileges, have been fixed in SAP Basis AS ABAP of SAP NetWeaver 700 to 750, from 750 onwards delivered as ABAP Platform."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "Missing Authorization Check"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"name": "https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=508559699",
|
|
"refsource": "MISC",
|
|
"url": "https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=508559699"
|
|
},
|
|
{
|
|
"name": "https://launchpad.support.sap.com/#/notes/2698996",
|
|
"refsource": "MISC",
|
|
"url": "https://launchpad.support.sap.com/#/notes/2698996"
|
|
}
|
|
]
|
|
},
|
|
"source": {
|
|
"discovery": "UNKNOWN"
|
|
}
|
|
} |