Unrated severityNVD Advisory· Published Nov 13, 2019· Updated Aug 4, 2024

CVE-2019-0388

Description

SAP UI5 HTTP Handler (corrected in SAP_UI versions 7.5, 7.51, 7.52, 7.53, 7.54 and SAP UI_700 version 2.0) allows an attacker to manipulate content due to insufficient URL validation.

Affected products

SAP/SAP_UIllm-create
Range: 7.5, 7.51, 7.52, 7.53, 7.54, UI_700 2.0
SAP/UI5 HTTP Handlerllm-create
Range: 7.5, 7.51, 7.52, 7.53, 7.54, UI_700 2.0
SAP SE/SAP UIv5
Range: < 7.5
SAP SE/SAP UI 700v5
Range: < 2.0

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

launchpad.support.sap.commitrex_refsource_MISC
wiki.scn.sap.com/wiki/pages/viewpage.actionmitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000