First published: Tue Nov 13 2018(Updated: )
SAP Mobile Secure Android Application, Mobile-secure.apk Android client, before version 6.60.19942.0, allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service. Install the Mobile Secure Android client released in Mid-Oct 2018.
Credit: cna@sap.com
Affected Software | Affected Version | How to fix |
---|---|---|
SAP Mobile Secure Android | <6.60.19942.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2018-2482 is considered to have a moderate severity level due to its potential impact on user service access.
To fix CVE-2018-2482, update to the Mobile Secure Android client version released in mid-October 2018 or later.
CVE-2018-2482 is categorized as a denial of service vulnerability affecting the SAP Mobile Secure Android application.
Users of the SAP Mobile Secure Android application prior to version 6.60.19942.0 are affected by CVE-2018-2482.
Yes, an attacker can exploit CVE-2018-2482 remotely to disrupt service access for legitimate users.