← back
CVE-2018-2469

CVE-2018-2469

EPSS 1.7%
In short

A vulnerability in SAP Adaptive Server Enterprise versions 15.7 and 16.0 allows attackers to bypass access controls and view restricted information that should be protected.

Technical detail

Under specific conditions, the vulnerability permits unauthorized information disclosure in SAP ASE 15.7 and 16.0 by circumventing access control mechanisms. An attacker with network access to the affected database server can retrieve sensitive data that should be restricted, though the exact attack vector and preconditions are not publicly detailed.

Summary generated and translated by AI from the official description.
Under certain conditions SAP Adaptive Server Enterprise (ASE), versions 15.7 and 16.0, allows an attacker to access information which would otherwise be restricted.
Affected products
SAP · SAP Adaptive Server Enterprise (ASE)

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://launchpad.support.sap.com/#/notes/2679789https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=500633095http://www.securityfocus.com/bid/105526