CVE-2019-0315 is a vulnerability in SAP Netweaver Process Integration
Published on June 12, 2019

Under certain conditions the PI Integration Builder Web UI of SAP NetWeaver Process Integration (versions: SAP_XIESR: 7.10 to 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, SAP_XITOOL: 7.10 to 7.11, 7.30, 7.31, 7.40, 7.50 and SAP_XIPCK 7.10 to 7.11, 7.20, 7.30) allows an attacker to access passwords used in FTP channels leading to information disclosure.

NVD

Products Associated with CVE-2019-0315

Want to know whenever a new CVE is published for SAP Netweaver Process Integration? stack.watch will email you.

SAP Netweaver Process Integration

Affected Versions

SAP SE SAP NetWeaver Process Integration(SAP_XIESR):

Version < 7.10 to 7.11 is affected.
Version < 7.20 is affected.
Version < 7.30 is affected.
Version < 7.31 is affected.
Version < 7.40 is affected.
Version < 7.50 is affected.

SAP SE SAP NetWeaver Process Integration(SAP_XITOOL):

Version < 7.10 to 7.11 is affected.
Version < 7.30 is affected.
Version < 7.31 is affected.
Version < 7.40 is affected.
Version < 7.50 is affected.

SAP SE SAP NetWeaver Process Integration(SAP_XIPCK):

Version < 7.10 to 7.11 is affected.
Version < 7.20 is affected.
Version < 7.30 is affected.

Exploit Probability

EPSS

0.28%

Percentile

51.07%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2019-0315 is a vulnerability in SAP Netweaver Process IntegrationPublished on June 12, 2019

Products Associated with CVE-2019-0315

Affected Versions

Exploit Probability

CVE-2019-0315 is a vulnerability in SAP Netweaver Process Integration
Published on June 12, 2019