CVE-2023-36919

🗓️ 11 Jul 2023 02:54:02Reported by sapType

SAP Enable Now versions WPB_MANAGER 1.0, WPB_MANAGER_CE 10, WPB_MANAGER_HANA 10, ENABLE_NOW_CONSUMP_DEL 1704 - Referrer-Policy header not implemented, leading to information disclosure

Reporter	Title	Published	Views	Family All 9
CNNVD	SAP Enable Now 安全漏洞	11 Jul 202300:00	–	cnnvd
Cvelist	CVE-2023-36919 Information Disclosure in SAP Enable Now	11 Jul 202302:54	–	cvelist
EUVD	EUVD-2023-40839	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in SAP products	11 Jul 202300:00	–	ncsc
NVD	CVE-2023-36919	11 Jul 202303:15	–	nvd
Prion	Information disclosure	11 Jul 202303:15	–	prion
Positive Technologies	PT-2023-4098 · Sap · Sap Enable Now	11 Jul 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-36919	23 May 202505:33	–	redhatcve
Vulnrichment	CVE-2023-36919 Information Disclosure in SAP Enable Now	11 Jul 202302:54	–	vulnrichment

NVD

Vulners

Node

sap enable_nowMatch-

[
  {
    "defaultStatus": "unaffected",
    "product": "SAP Enable Now",
    "vendor": "SAP_SE",
    "versions": [
      {
        "status": "affected",
        "version": "WPB_MANAGER 1.0"
      },
      {
        "status": "affected",
        "version": "WPB_MANAGER_CE 10"
      },
      {
        "status": "affected",
        "version": "WPB_MANAGER_HANA 10"
      },
      {
        "status": "affected",
        "version": "ENABLE_NOW_CONSUMP_DEL 1704"
      }
    ]
  }
]

Source	Link
launchpad	www.launchpad.support.sap.com/
sap	www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html

21 Nov 2024 08:10Current

5Medium risk

Vulners AI Score5

CVSS 3.15.3

EPSS0.00535

SSVC