Unrated severityNVD Advisory· Published Dec 12, 2023· Updated Aug 2, 2024
Directory Traversal vulnerability in SAP Master Data Governance
CVE-2023-49058
Description
SAP Master Data Governance File Upload application allows an attacker to exploit insufficient validation of path information provided by users, thus characters representing ‘traverse to parent directory’ are passed through to the file APIs. As a result, it has a low impact to the confidentiality.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: MDG_FND 731
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.