Skip links
Vahagn Vardanian

Vahagn Vardanian

Co-founder and CTO of RedRays

Caching KM Content in the Portal, SAP security note 2158791

Description

The temporary downloaded files that are accessed via a browser and stored in KM are not cleared automatically.

For example, if you use Internet Explorer to open a document stored in KM, the browser is downloading the document itself to your PC in the ‘Temporary Internet Files’ folder. After you close the document, its content remains in the ‘Temporary Internet Files’ folder.

Available fix and Supported packages

  • KMC-CM | 7.00 | 7.02
  • KMC-CM | 7.30 | 7.30
  • KMC-CM | 7.31 | 7.31
  • KMC-CM | 7.40 | 7.40
  • KMC-CM | 7.50 | 7.50
  • KMC CONTENT MANAGEMENT 7.00 | SP032 | 000001
  • KMC CONTENT MANAGEMENT 7.00 | SP033 | 000000
  • KMC CONTENT MANAGEMENT 7.01 | SP017 | 000001
  • KMC CONTENT MANAGEMENT 7.01 | SP018 | 000000
  • KMC CONTENT MANAGEMENT 7.02 | SP017 | 000001
  • KMC CONTENT MANAGEMENT 7.02 | SP018 | 000000
  • KMC CONTENT MANAGEMENT 7.30 | SP013 | 000001
  • KMC CONTENT MANAGEMENT 7.30 | SP014 | 000000
  • KMC CONTENT MANAGEMENT 7.31 | SP016 | 000001
  • KMC CONTENT MANAGEMENT 7.31 | SP017 | 000000
  • KMC CONTENT MANAGEMENT 7.40 | SP011 | 000001
  • KMC CONTENT MANAGEMENT 7.40 | SP012 | 000000
  • KMC CONTENT MANAGEMENT 7.50 | SP000 | 000000

Affected component

    EP-KM-WD
    WebDAV Server

CVSS

Score: 0

PoC

Detailed vulnerability information added to RedRays Security Platform. Contact [email protected] for details.

URL

https://launchpad.support.sap.com/#/notes/2158791

TAGS

#Cache
#Browser
#Download

Explore More

RedRays AI for ABAP Code Security

Empowering Secure, Efficient, and Compliant SAP ABAP Development—in Real Time and Without Data Retention In today’s rapidly evolving business landscape, organizations increasingly

Special offer for SAP Security Udemy course!

$ 9.99

Join “SAP Security Core Concepts and Security Administration” which is part of the Blackhat course series.