National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Vulnerability Change Record for CVE-2019-0257

Change History

Initial Analysis - 2/21/2019 2:34:29 PM

Action Type Old Value New Value
Changed Reference Type
http://www.securityfocus.com/bid/106999 No Types Assigned
http://www.securityfocus.com/bid/106999 Third Party Advisory
Changed Reference Type
https://launchpad.support.sap.com/#/notes/2728839 No Types Assigned
https://launchpad.support.sap.com/#/notes/2728839 Permissions Required, Vendor Advisory
Changed Reference Type
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=510922943 No Types Assigned
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=510922943 Vendor Advisory
Added CWE
CWE-285
Added CVSS V2
(AV:N/AC:L/Au:S/C:P/I:P/A:P)
Added CVSS V3
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Added CPE Configuration
OR
     *cpe:2.3:a:sap:netweaver_abap:*:*:*:*:*:*:*:* versions from (including) 7.0 up to (including) 7.02
     *cpe:2.3:a:sap:netweaver_abap:*:*:*:*:*:*:*:* versions from (including) 7.10 up to (including) 7.11
     *cpe:2.3:a:sap:netweaver_abap:7.30:*:*:*:*:*:*:*
     *cpe:2.3:a:sap:netweaver_abap:7.31:*:*:*:*:*:*:*
     *cpe:2.3:a:sap:netweaver_abap:7.40:*:*:*:*:*:*:*
     *cpe:2.3:a:sap:netweaver_abap:*:*:*:*:*:*:*:* versions from (including) 7.50 up to (including) 7.53
     *cpe:2.3:a:sap:netweaver_abap:*:*:*:*:*:*:*:* versions from (including) 7.74 up to (including) 7.75