CVE-2019-0363

Description

Attackers may misuse an HTTP/REST endpoint of SAP HANA Extended Application Services (Advanced model), before version 1.0.118, to overload the server or retrieve information about internal network ports.

Affected products

• SAP_SE / SAP HANA Extended Application Services< 1.0.118 – < 1.0.118

References

• MISChttps://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=525962506
• MISChttps://launchpad.support.sap.com/#/notes/2817491