2 matches found
CVE-2019-0246
The vulnerability CVE-2019-0246 affects the SAP Cloud Connector prior to version 2.11.3. The root cause is that certain functionalities requiring user identity do not perform authentication checks, enabling potential unauthorized actions. Impact is high: exposed confidentiality, integrity, and av...
CVE-2019-0247
SAP Cloud Connector is affected by a code-injection vulnerability in versions prior to 2.11.3. The root cause is an injectable code path that can be executed by an attacker, allowing them to control the application's behavior. Remediation: upgrade to version 2.11.3 or later (vendor SAP guidance)....