2 matches found
CVE-2018-2379
CVE-2018-2379 affects SAP HANA Extended Application Services (EAS) 1.0. An unauthenticated user can determine if a given username is valid by inspecting error messages returned from a specific endpoint, enabling user-rename/account enumeration. The issue is limited to EAS 1.0 as described; no bro...
CVE-2018-2379
In SAP HANA Extended Application Services, 1.0, an unauthenticated user could test if a given username is valid by evaluating error messages of a specific endpoint...