CVE-2018-2380
CVE-2018-2380
In short
SAP CRM fails to properly validate file paths entered by users, allowing attackers to access files outside the intended directory by using special characters like '../' to navigate to parent folders.
Technical detail
Path traversal vulnerability in SAP CRM (versions 7.01-7.54) due to insufficient input validation on user-supplied path information. Attackers can inject directory traversal sequences (e.g., '../') that are passed unsanitized to file system APIs, enabling unauthorized access to files outside the intended directory scope. Requires user interaction or valid application access.
Summary generated and translated by AI from the official description.
SAP CRM, 7.01, 7.02,7.30, 7.31, 7.33, 7.54, allows an attacker to exploit insufficient validation of path information provided by users, thus characters representing "traverse to parent directory" are passed through to the file APIs.
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L
Affected products
SAP SE · SAP CRMpublic PoCs found — 3
githubgithub.com/erpscanteam/CVE-2018-2380★ 52cve_referencewww.exploit-db.com/exploits/44292/unverifiedexploitdbwww.exploit-db.com/exploits/44292unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://blogs.sap.com/2018/02/13/sap-security-patch-day-february-2018/https://github.com/erpscanteam/CVE-2018-2380https://launchpad.support.sap.com/#/notes/2547431https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-2380https://www.exploit-db.com/exploits/44292/http://www.securityfocus.com/bid/103001