logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2018-2492

Description

SAML 2.0 functionality in SAP NetWeaver AS Java, does not sufficiently validate XML documents received from an untrusted source. This is fixed in versions 7.2, 7.30, 7.31, 7.40 and 7.50.


Affected Software


CPE Name Name Version
sap:netweaver_application_server_java sap netweaver application server java 7.20
sap:netweaver_application_server_java sap netweaver application server java 7.30
sap:netweaver_application_server_java sap netweaver application server java 7.31
sap:netweaver_application_server_java sap netweaver application server java 7.40
sap:netweaver_application_server_java sap netweaver application server java 7.50