Attackers may misuse an HTTP/REST endpoint of SAP HANA Extended Application Services (Advanced model), before version 1.0.118, to enumerate open ports.
[
{
"product": "SAP HANA Extended Application Services",
"vendor": "SAP SE",
"versions": [
{
"status": "affected",
"version": "< 1.0.118"
}
]
}
]