admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-29 01:31:20 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2019/CVE-2019-03xx/CVE-2019-0349.json
cad-safe-bot e6cbafdc40 Auto-Update: 2024-12-08T03:00:18.988682+00:00
2024-12-08 03:06:42 +00:00

173 lines
6.2 KiB
JSON
Raw Blame History

{
"id": "CVE-2019-0349",
"sourceIdentifier": "cna@sap.com",
"published": "2019-08-14T15:15:12.017",
"lastModified": "2024-11-21T04:16:43.530",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "SAP Kernel (ABAP Debugger), versions KRNL32NUC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL32UC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64NUC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, KRNL64UC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, 7.73, KERNEL 7.21, 7.49, 7.53, 7.73, 7.75, 7.76, 7.77, allows a user to execute \u201cGo to statement\u201d without possessing the authorization S_DEVELOP DEBUG 02, resulting in Missing Authorization Check"
},
{
"lang": "es",
"value": "Kernel de SAP (ABAP Debugger), versiones KRNL32NUC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL32UC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64NUC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, KRNL64UC 7.21, 7.21EXT , 7.22EXT, 7.49, 7.73, KERNEL 7.21, 7.49, 7.53, 7.73, 7.75, 7.76, 7.77, le permite al usuario ejecutar \"GO to statement\" sin poseer la autorizaci\u00f3n S_DEVELOP DEBUG 02, lo que resulta en la falta de verificaci\u00f3n de autorizaci\u00f3n"
}
],
"metrics": {
"cvssMetricV30": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 7.2,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "HIGH",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 1.2,
"impactScore": 5.9
}
],
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P",
"baseScore": 6.5,
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "SINGLE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"availabilityImpact": "PARTIAL"
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 8.0,
"impactScore": 6.4,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-862"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:sap:advanced_business_application_programming_platform_kernel:7.21:*:*:*:*:*:*:*",
"matchCriteriaId": "D8EBCD0F-ED63-4C55-9DB4-63DE8F0751CA"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:sap:advanced_business_application_programming_platform_kernel:7.21ext:*:*:*:*:*:*:*",
"matchCriteriaId": "B39B9B73-5E07-474D-A537-25F2873FC1D5"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:sap:advanced_business_application_programming_platform_kernel:7.22:*:*:*:*:*:*:*",
"matchCriteriaId": "D318512C-4F5F-47AD-9F85-1EACCCBF11C0"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:sap:advanced_business_application_programming_platform_kernel:7.22ext:*:*:*:*:*:*:*",
"matchCriteriaId": "F0365B5E-29BD-459C-9160-4A454F39287A"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:sap:advanced_business_application_programming_platform_kernel:7.49:*:*:*:*:*:*:*",
"matchCriteriaId": "B2AFDC66-A5C4-4135-9A7F-1778B9DDF2EE"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:sap:advanced_business_application_programming_platform_kernel:7.53:*:*:*:*:*:*:*",
"matchCriteriaId": "4CB213CC-4C71-4B3A-9D9F-C83594597447"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:sap:advanced_business_application_programming_platform_kernel:7.73:*:*:*:*:*:*:*",
"matchCriteriaId": "46C2954E-3626-4DC7-85CA-241B9E826337"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:sap:advanced_business_application_programming_platform_kernel:7.75:*:*:*:*:*:*:*",
"matchCriteriaId": "3087F37A-8D4F-43AC-8E8E-EA7D5E5AF44C"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:sap:advanced_business_application_programming_platform_kernel:7.76:*:*:*:*:*:*:*",
"matchCriteriaId": "3DB8358E-D73F-4543-9507-86593A6393C7"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:sap:advanced_business_application_programming_platform_kernel:7.77:*:*:*:*:*:*:*",
"matchCriteriaId": "DFA70E06-2DA6-4019-BC72-0118C04D6AF0"
}
]
}
]
}
],
"references": [
{
"url": "https://launchpad.support.sap.com/#/notes/2798743",
"source": "cna@sap.com",
"tags": [
"Permissions Required",
"Vendor Advisory"
]
},
{
"url": "https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=523998017",
"source": "cna@sap.com",
"tags": [
"Vendor Advisory"
]
},
{
"url": "https://launchpad.support.sap.com/#/notes/2798743",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Permissions Required",
"Vendor Advisory"
]
},
{
"url": "https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=523998017",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
]
}
]
}
Reference in New Issue View Git Blame Copy Permalink