VYPR
Unrated severityNVD Advisory· Published Nov 13, 2018· Updated Aug 5, 2024

CVE-2018-2487

CVE-2018-2487

Description

SAP Disclosure Management 10.x allows an attacker to exploit through a specially crafted zip file provided by users: When extracted in specific use cases, files within this zip file can land in different locations than the originally intended extraction point.

Affected products

2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.