CVE-2019-0282 is a vulnerability in SAP Netweaver Process Integration
Published on April 10, 2019
Several web pages in SAP NetWeaver Process Integration (Runtime Workbench), fixed in versions 7.10 to 7.11, 7.30, 7.31, 7.40, 7.50; can be accessed without user authentication, which might expose internal data like release information, Java package and Java object names which can be misused by the attacker.
Products Associated with CVE-2019-0282
Want to know whenever a new CVE is published for SAP Netweaver Process Integration? stack.watch will email you.
Affected Versions
SAP SE SAP NetWeaver Process Integration (Runtime Workbench):- Version < from 7.10 to 7.11 is affected.
- Version < 7.30 is affected.
- Version < 7.31 is affected.
- Version < 7.40 is affected.
- Version < 7.50 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.