← volver
CVE-2018-2401

CVE-2018-2401

CVSS 5.4 MEDIUMEPSS 1.7%
SAP Business Process Automation (BPA) By Redwood does not sufficiently validate an XML document accepted from an untrusted source resulting in an XML External Entity (XXE) vulnerability.
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L
Productos afectados
SAP SE · SAP Business Process Automation (BPA) By Redwood

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://blogs.sap.com/2018/03/13/sap-security-patch-day-march-2018/https://launchpad.support.sap.com/#/notes/2596766http://www.securityfocus.com/bid/103374