CVE-2018-2402 is a vulnerability in SAP Hana
Published on March 14, 2018

In systems using the optional capture & replay functionality of SAP HANA, 1.00 and 2.00, (see SAP Note 2362820 for more information about capture & replay), user credentials may be stored in clear text in the indexserver trace files of the control system. An attacker with the required authorizations on the control system may be able to access the user credentials and gain unauthorized access to data in the captured or target system.

NVD

Products Associated with CVE-2018-2402

Want to know whenever a new CVE is published for SAP Hana? stack.watch will email you.

SAP Hana

Affected Versions

SAP SE SAP HANA:

Version 1.0 is affected.
Version 2.0 is affected.

Exploit Probability

EPSS

0.27%

Percentile

50.18%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2018-2402 is a vulnerability in SAP HanaPublished on March 14, 2018

Products Associated with CVE-2018-2402

Affected Versions

Exploit Probability

CVE-2018-2402 is a vulnerability in SAP Hana
Published on March 14, 2018