VYPR
Unrated severityNVD Advisory· Published Aug 14, 2019· Updated Aug 4, 2024

CVE-2019-0349

CVE-2019-0349

Description

SAP Kernel (ABAP Debugger), versions KRNL32NUC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL32UC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64NUC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, KRNL64UC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, 7.73, KERNEL 7.21, 7.49, 7.53, 7.73, 7.75, 7.76, 7.77, allows a user to execute “Go to statement” without possessing the authorization S_DEVELOP DEBUG 02, resulting in Missing Authorization Check

Affected products

6
  • Range: multiple versions (KRNL32NUC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL32UC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64NUC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, KRNL64UC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, 7.73, KERNEL 7.21, 7.49, 7.53, 7.73, 7.75, 7.76, 7.77)
  • SAP SE/SAP Kernel (KERNEL)v5
    Range: < 7.21
  • SAP SE/SAP Kernel (KRNL32NUC)v5
    Range: < 7.21
  • SAP SE/SAP Kernel (KRNL32UC)v5
    Range: < 7.21
  • SAP SE/SAP Kernel (KRNL64NUC)v5
    Range: < 7.21
  • SAP SE/SAP Kernel (KRNL64UC)v5
    Range: < 7.21

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.