CVE-2019-0370 is a vulnerability in SAP Financial Consolidation
Published on October 8, 2019

Due to missing input validation, SAP Financial Consolidation, before versions 10.0 and 10.1, enables an attacker to use crafted input to interfere with the structure of the surrounding query leading to XPath Injection.

NVD

Products Associated with CVE-2019-0370

Want to know whenever a new CVE is published for SAP Financial Consolidation? stack.watch will email you.

SAP Financial Consolidation

Affected Versions

SAP SE SAP Financial Consolidation:

Version < 10.0 is affected.
Version < 10.1 is affected.

Exploit Probability

EPSS

0.29%

Percentile

51.51%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2019-0370 is a vulnerability in SAP Financial ConsolidationPublished on October 8, 2019

Products Associated with CVE-2019-0370

Affected Versions

Exploit Probability

CVE-2019-0370 is a vulnerability in SAP Financial Consolidation
Published on October 8, 2019