Unrated severityNVD Advisory· Published Oct 8, 2019· Updated Aug 4, 2024

CVE-2019-0381

Description

A binary planting in SAP SQL Anywhere, before version 17.0, SAP IQ, before version 16.1, and SAP Dynamic Tier, before versions 1.0 and 2.0, can result in the inadvertent access of files located in directories outside of the paths specified by the user.

Affected products

SAP/SAP IQllm-create
Range: <16.1
SAP/SAP Dynamic Tierllm-create
Range: <1.0 (or <2.0)
SAP/SQL Anywherellm-fuzzy
Range: <17.0
SAP SE/SAP Dynamic Tieringv5
Range: < 1.0
SAP SE/SAP IQv5
Range: < 16.1
SAP SE/SAP SQL Anywherev5
Range: < 17.0

Patches

Vulnerability mechanics

References

launchpad.support.sap.commitrex_refsource_MISC
wiki.scn.sap.com/wiki/pages/viewpage.actionmitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000