Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
Производитель ПО
Наименование ПО
SAP Notes
(1661773-3)
SAP Support Packages
(E_SOURCING_SRM_JAVA_SERVER_50_SP000_000010, E_SOURCING_SRM_JAVA_SERVER_50_SP999999_999999, SOURCING_SRM_JAVA_SERVER_51_SP010_000000, SOURCING_SRM_JAVA_SERVER_51_SP999999_999999)
Описание
Information such as usernames can be discovered using LOD-ESO-AS. This information may be used by an attacker to further target SAP Sourcing.
Как исправить
Fixes have been developed and released in version 5.0 J, Version 5.1 Patch 10 and all Version 7.0 SP and patch releases. Update to the appropriate Release / Patch version to mitigate this risk.
Ссылки