Server Side Request Forgery (SSRF) vulnerability in SAP Central Management Console, BI Launchpad and Fiori BI Launchpad, 4.10, from 4.20, from 4.30, allowing malicious user to determine backend server port
Reporter | Title | Published | Views | Family All 3 |
---|---|---|---|---|
CVE | CVE-2018-2370 | 14 Feb 201812:29 | – | cve |
Prion | Server side request forgery (ssrf) | 14 Feb 201812:29 | – | prion |
NVD | CVE-2018-2370 | 14 Feb 201812:29 | – | nvd |
[
{
"product": "SAP BI Launchpad",
"vendor": "SAP SE",
"versions": [
{
"status": "affected",
"version": "4.00"
},
{
"status": "affected",
"version": "from 4.20"
},
{
"status": "affected",
"version": "from 4.30"
}
]
}
]
Source | Link |
---|---|
launchpad | www.launchpad.support.sap.com/ |
blogs | www.blogs.sap.com/2018/02/13/sap-security-patch-day-february-2018/ |
securityfocus | www.securityfocus.com/bid/102998 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo