Description
SAP GUI for Windows may allow a highly privileged user on the affected client PC to locally access sensitive information stored in process memory during runtime.This vulnerability has a high impact on confidentiality, with no impact on integrity and availability.
CVSS breakdown
CVSS 3.1
Attack Vector
Local
Attack Complexity
Low
Privileges Required
High
User Interaction
Required
Scope
Changed
Confidentiality
High
Integrity
None
Availability
None
Affected products
- SAP_SE / SAP GUI for WindowsBC-FES-GUI 8.00 – BC-FES-GUI 8.00
- SAP_SE / SAP GUI for Windows8.10 – 8.10