• Все разделы
  • Статьи
  • Медиа
  • Новости
  • Нормативные материалы
  • Конференции
  • Глоссарий

Note 1751310 - Potential information disclosure relating to parameters

Главная Специалистам База уязвимостей Note 1751310 - Potential information disclosure relating to parameters

Карточка уязвимости

Характеристики уязвимости

Уровень опасности
Оценка CVSS
(AV:N/AC:M/AU:S/C:P/I:N/A:NSAP)
Производитель ПО
SAP
Наименование ПО
SAP Notes (1751310-3) SAP Support Packages (SAPKB70029, SAPKB70114, SAPKB70214, SAPKB71017, SAPKB71112, SAPKB72008, SAPKB73010, SAPKB73108, SAPKB74002)
Описание
Information such as certain landscape configuration data can be discovered using BC-DB-SDB-CCM.This information may be used by an attacker to further target the SAP system.
Как исправить
As a result of a program change, the affected function module now only supports the reading of the affected landscape information from within the SAP system itself.This program change is contained in the Support Packages specified in the attachment. For older Support Packages, you can implement the program change from this note using SNOTE.
Ссылки