CVE-2019-0301
First published: Tue May 14 2019(Updated: )
Under certain conditions, it is possible to request the modification of role or privilege assignments through SAP Identity Management REST Interface Version 2, which would otherwise be restricted only for viewing.
Credit: cna@sap.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SAP Identity Management | =2.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2019-0301?
CVE-2019-0301 is considered a high severity vulnerability due to its potential impact on role and privilege management.
How do I fix CVE-2019-0301?
To fix CVE-2019-0301, apply the latest security patches provided by SAP for Identity Management version 2.0.
What does CVE-2019-0301 affect?
CVE-2019-0301 affects SAP Identity Management REST Interface Version 2.0.
What are the implications of CVE-2019-0301?
The implications of CVE-2019-0301 include unauthorized modifications to role and privilege assignments that should be restricted.
Is CVE-2019-0301 easy to exploit?
CVE-2019-0301 can be exploited under specific conditions, making it critical to assess your SAP Identity Management deployment.
- collector/nvd-index
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/author
- agent/last-modified-date
- agent/tags
- agent/first-publish-date
- agent/description
- agent/event
- agent/source
- vendor/sap
- canonical/sap identity management
- version/sap identity management/2.0