@sap-cloud-sdk/core is vulnerable to information disclosure. The vulnerability exists because the destination cache does not include the user identity information, allowing an attacker to retrieve the same destination by using other users permissions.
CPE | Name | Operator | Version |
---|---|---|---|
@sap-cloud-sdk/core | le | 1.51.1+20211105173403.0 | |
@sap-cloud-sdk/core | le | 1.51.1+20211105173403.0 |