CVE-2018-2449

2018-08-14T16:29:00
ID CVE-2018-2449
Type cve
Reporter cve@mitre.org
Modified 2018-10-11T16:49:00

Description

SAP SRM MDM Catalog versions 3.73, 7.31, 7.32 in (SAP NetWeaver 7.3) - import functionality does not perform authentication checks for valid repository user. This is an unauthenticated functionality that you can use on windows machines to do SMB relaying.