Under certain conditions, SAP Mobile SDK Certificate Provider allows a local unprivileged attacker to exploit an insecure temporary file storage. For a successful exploitation user interaction from another user is required and could lead to complete impact of confidentiality integrity and availability.
CPE | Name | Operator | Version |
---|---|---|---|
mobile_sdk_certificate_provider | lt | 3.0.8 |