Medium severity5.3NVD Advisory· Published Aug 14, 2018· Updated Jun 17, 2026
CVE-2018-2448
CVE-2018-2448
Description
Under certain conditions SAP SRM-MDM (CATALOG versions 3.0, 7.01, 7.02) utilities functionality allows an attacker to access information of user existence which would otherwise be restricted.
Affected products
2- Range: 3.0
Patches
Vulnerability mechanics
References
3- www.securityfocus.com/bid/105077nvdThird Party AdvisoryVDB Entry
- launchpad.support.sap.comnvdPermissions RequiredVendor Advisory
- wiki.scn.sap.com/wiki/pages/viewpage.actionnvdVendor Advisory
News mentions
0No linked articles in our index yet.