Skip links

Potential information disclosure relating to code flow, SAP security note 1536979

Description

Potential information disclosure relating to code flow

Available fix and Supported packages

  • NWMCLIENTSETUP | 7.10 | 7.11
  • NWMCLIENTSETUP | 7.30 | 7.30
  • NWMCLIENTSETUP | 7.31 | 7.31
  • NW MOBILE CLIENT SETUP 7.10 | SP006 | 000017
  • NW MOBILE CLIENT SETUP 7.10 | SP007 | 000018
  • NW MOBILE CLIENT SETUP 7.10 | SP008 | 000007
  • NW MOBILE CLIENT SETUP 7.10 | SP009 | 000006
  • NW MOBILE CLIENT SETUP 7.10 | SP010 | 000007
  • NW MOBILE CLIENT SETUP 7.10 | SP011 | 000001
  • NW MOBILE CLIENT SETUP 7.10 | SP012 | 000000
  • NW MOBILE CLIENT SETUP 7.11 | SP002 | 000007
  • NW MOBILE CLIENT SETUP 7.11 | SP003 | 000003
  • NW MOBILE CLIENT SETUP 7.11 | SP004 | 000005
  • NW MOBILE CLIENT SETUP 7.11 | SP005 | 000002
  • NW MOBILE CLIENT SETUP 7.11 | SP006 | 000001
  • NW MOBILE CLIENT SETUP 7.11 | SP007 | 000000

Affected component

    BC-MOB-LAP
    Laptop Client for Data Orchestration Engine (DOE)

CVSS

Score: 0

Exploit

Detailed vulnerability information added to RedRays Security Platform. Contact [email protected] for details.

URL

https://launchpad.support.sap.com/#/notes/1536979

TAGS

#Security-threat
#contents-of-stack-traces
#console-messages
#Information-disclosure

How to detect over 4100 vulnerabilities in SAP Systems?

More to explorer

Initiating SAP Penetration Testing

►   Pentest, short for penetration testing, refers to a set of processes that simulate an attacker’s actions to identify security vulnerabilities. Companies

SAP Security Patch Day RedRays

May 2024 SAP Security Patch Day

Vulnerability: Multiple vulnerabilities in SAP CX Commerce SAP Component: CEC-SCC-PLA-PL CVE ID: CVE-2019-17495 CVSS Score: 9.8 CVSS Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Category: Program error