Published: 14/08/2019 Updated: 24/08/2020

CVSS v2 Base Score: 6.5 | Impact Score: 6.4 | Exploitability Score: 8

CVSS v3 Base Score: 7.2 | Impact Score: 5.9 | Exploitability Score: 1.2

VMScore: 578

Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P

Subscribe to Advanced Business Application Programming Platform Kernel

SAP Kernel (ABAP Debugger), versions KRNL32NUC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL32UC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64NUC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, KRNL64UC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, 7.73, KERNEL 7.21, 7.49, 7.53, 7.73, 7.75, 7.76, 7.77, allows a user to execute “Go to statement” without possessing the authorization S_DEVELOP DEBUG 02, resulting in Missing Authorization Check

Vulnerable Product	Search on Vulmon	Subscribe to Product
sap advanced business application programming platform kernel 7.21ext
sap advanced business application programming platform kernel 7.22
sap advanced business application programming platform kernel 7.22ext
sap advanced business application programming platform kernel 7.49
sap advanced business application programming platform kernel 7.53
sap advanced business application programming platform kernel 7.76
sap advanced business application programming platform kernel 7.77
sap advanced business application programming platform kernel 7.21
sap advanced business application programming platform kernel 7.73
sap advanced business application programming platform kernel 7.75

CWE-862 https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=523998017 https://launchpad.support.sap.com/#/notes/2798743 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2019-0349

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect