Vulnerabilities > CVE-2018-2362 - Unspecified vulnerability in SAP Hana 1.00/2.00
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
LOW Integrity impact
NONE Availability impact
NONE Summary
A remote unauthenticated attacker, SAP HANA 1.00 and 2.00, could send specially crafted SOAP requests to the SAP Startup Service and disclose information such as the platform's hostname.
References
- http://www.securityfocus.com/bid/102452
- http://www.securityfocus.com/bid/102452
- https://blogs.sap.com/2018/01/09/sap-security-patch-day-january-2018/
- https://blogs.sap.com/2018/01/09/sap-security-patch-day-january-2018/
- https://launchpad.support.sap.com/#/notes/2575750
- https://launchpad.support.sap.com/#/notes/2575750