Vulnerabilities > SAP > Landscape Management > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-07-09 CVE-2024-39593 Unspecified vulnerability in SAP Landscape Management 3.0
SAP Landscape Management allows an authenticated user to read confidential data disclosed by the REST Provider Definition response.
network
low complexity
sap
5.7
2020-04-14 CVE-2020-6236 Improper Privilege Management vulnerability in SAP Adaptive Extensions and Landscape Management
SAP Landscape Management, version 3.0, and SAP Adaptive Extensions, version 1.0, allows an attacker with admin_group privileges to change ownership and permissions (including S-user ID bit s-bit) of arbitrary files remotely.
network
low complexity
sap CWE-269
6.5
2019-10-08 CVE-2019-0380 Information Exposure Through Log Files vulnerability in SAP Landscape Management 3.0
Under certain conditions, SAP Landscape Management enterprise edition, before version 3.0, allows custom secure parameters’ default values to be part of the application logs leading to Information Disclosure.
network
low complexity
sap CWE-532
4.0
2019-01-08 CVE-2019-0249 Unspecified vulnerability in SAP Landscape Management 3.0
Under certain conditions SAP Landscape Management (VCM 3.0) allows an attacker to access information which would otherwise be restricted.
network
low complexity
sap
5.0