Description
SAP Work Manager and SAP Inventory Manager allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service.
Some well-known impacts of Denial of Service vulnerability are –
- long response delays and service interruptions, thus degrading the service quality experienced by legitimate users
- direct impact on availability
Available fix and Supported packages
- MOB_WM_AND | 6.3.0 | 6.3.0
- MOB_WM_AND | 6.4.0 | 6.4.0
- MOB_WM_AND | 6.5 | 6.5
- MOB_IM_AND | 4.3.0 | 4.3.0
Affected component
- MOB-SYC-SAP-IM
Syclo SAP Inventory Manager Application
CVSS
Score: 5.5
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
PoC
Detailed vulnerability information added to RedRays Security Platform. Contact [email protected] for details.
URL
https://launchpad.support.sap.com/#/notes/2793805
