Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistSapCVELIST:CVE-2019-0341
HistoryAug 14, 2019 - 1:50 p.m.

CVE-2019-0341

2019-08-1413:50:44
sap
www.cve.org

8.8 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

42.9%

JSON

The session cookie used by SAP Enable Now, version 1902, does not have the HttpOnly flag set. If an attacker runs script code in the context of the application, he could get access to the session cookie. The session cookie could then be abused to gain access to the application.

CNA Affected

[
  {
    "product": "SAP Enable Now",
    "vendor": "SAP SE",
    "versions": [
      {
        "status": "affected",
        "version": "< 1902"
      }
    ]
  }
]

Related

nvd 1
prion 1
cve 1
nvd
nvd
CVE-2019-0341
2019-08-14 14:15:16
prion
prion
Design/Logic Flaw
2019-08-14 14:15:00
cve
cve
CVE-2019-0341
2019-08-14 14:15:16

8.8 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

42.9%

JSON
Related for CVELIST:CVE-2019-0341
nvd1prion1cve1