Security Advisory

CVE-2019-0370

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-10-08 19:20:08

Last updated 2024-08-04 17:51:26

Assigner sap

State PUBLISHED

Description

Due to missing input validation, SAP Financial Consolidation, before versions 10.0 and 10.1, enables an attacker to use crafted input to interfere with the structure of the surrounding query leading to XPath Injection.

← Browse all CVEs View on cve.org ↗