Описание
Under certain conditions SAP HANA Extended Application Services, version 1.0, advanced model (XS advanced) writes credentials of platform users to a trace file of the SAP HANA system. Even though this trace file is protected from unauthorized access, the risk of leaking information is increased.
Ссылки
- Third Party Advisory
- Permissions RequiredVendor Advisory
- Vendor Advisory
- Third Party Advisory
- Permissions RequiredVendor Advisory
- Vendor Advisory
Уязвимые конфигурации
EPSS
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
Связанные уязвимости
Under certain conditions SAP HANA Extended Application Services, version 1.0, advanced model (XS advanced) writes credentials of platform users to a trace file of the SAP HANA system. Even though this trace file is protected from unauthorized access, the risk of leaking information is increased.
Уязвимость инструмента разработки приложений SAP HANA Extended Application Services, связанная с записью учетных данных пользователей в файл трассировки, позволяющая нарушителю получить доступ к защищаемой информации
EPSS
7.5 High
CVSS3
5 Medium
CVSS2