CVE-2019-0304
Published: Jun 12, 2019
Modified: Aug 4, 2024
Description
FTP Function of SAP NetWeaver AS ABAP Platform, versions- KRNL32NUC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL32UC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64NUC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, KRNL64UC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, 7.73, KERNEL 7.21, 7.45, 7.49, 7.53, 7.73, allows an attacker to inject code or specifically manipulated command that can be executed by the application. An attacker could thereby control the behaviour of the application.
| Vendor | Product | Versions |
|---|---|---|
SAP SE | SAP NetWeaver AS ABAP Platform(KRNL32NUC) | affected < 7.21affected < 7.21EXTaffected < 7.22affected < 7.22EXT |
SAP SE | SAP NetWeaver AS ABAP Platform(KRNL32UC) | affected < 7.21affected < 7.21EXTaffected < 7.22affected < 7.22EXT |
SAP SE | SAP NetWeaver AS ABAP Platform(KRNL64NUC) | affected < 7.21affected < 7.21EXTaffected < 7.22affected < 7.22EXTaffected < 7.49 |
SAP SE | SAP NetWeaver AS ABAP Platform(KRNL64UC) | affected < 7.21affected < 7.21EXTaffected < 7.22affected < 7.22EXTaffected < 7.49+1 more versions |
SAP SE | SAP NetWeaver AS ABAP Platform(KERNEL) | affected < 7.21affected < 7.45affected < 7.49affected < 7.53affected < 7.73 |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now