VYPR
Unrated severityNVD Advisory· Published Dec 12, 2023· Updated Aug 2, 2024

Directory Traversal vulnerability in SAP Master Data Governance

CVE-2023-49058

Description

SAP Master Data Governance File Upload application allows an attacker to exploit insufficient validation of path information provided by users, thus characters representing ‘traverse to parent directory’ are passed through to the file APIs. As a result, it has a low impact to the confidentiality.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.