CVE-2019-0270 vulnerability in SAP Products
Published on March 12, 2019
ABAP Server of SAP NetWeaver and ABAP Platform fail to perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. This has been corrected in the following versions: KRNL32NUC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL32UC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64NUC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, 7.74, KRNL64UC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, 7.73, 7.74, 8.04, KERNEL 7.21, 7.45, 7.49, 7.53, 7.73, 7.74, 7.75, 8.04.
Products Associated with CVE-2019-0270
Want to know whenever a new CVE is published for SAP products? stack.watch will email you.
Affected Versions
SAP SE ABAP Platform & Server (KRNL32NUC):- Version < 7.21 is affected.
- Version < 7.21EXT is affected.
- Version < 7.22 is affected.
- Version < 7.22EXT is affected.
- Version < 7.21 is affected.
- Version < 7.21EXT is affected.
- Version < 7.22 is affected.
- Version < 7.22EXT is affected.
- Version < 7.21 is affected.
- Version < 7.21EXT is affected.
- Version < 7.22 is affected.
- Version < 7.22EXT is affected.
- Version < 7.49 is affected.
- Version < 7.74 is affected.
- Version < 7.21 is affected.
- Version < 7.21EXT is affected.
- Version < 7.22 is affected.
- Version < 7.22EXT is affected.
- Version < 7.49 is affected.
- Version < 7.73 is affected.
- Version < 7.74 is affected.
- Version < 8.04 is affected.
- Version < 7.21 is affected.
- Version < 7.45 is affected.
- Version < 7.49 is affected.
- Version < 7.53 is affected.
- Version < 7.73 is affected.
- Version < 7.74 is affected.
- Version < 7.75 is affected.
- Version < 8.04 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.