CVE-2019-0357
First published: Tue Sep 10 2019(Updated: )
The administrator of SAP HANA database, before versions 1.0 and 2.0, can misuse HANA to execute commands with operating system "root" privileges.
Credit: cna@sap.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SAP HANA | =1.0 | |
| SAP HANA | =2.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this SAP HANA database vulnerability?
The vulnerability ID is CVE-2019-0357.
What is the severity level of CVE-2019-0357?
The severity level of CVE-2019-0357 is high.
Which versions of SAP HANA are affected by CVE-2019-0357?
Versions 1.0 and 2.0 of SAP HANA are affected by CVE-2019-0357.
What can an administrator of SAP HANA database do to misuse HANA and execute commands?
An administrator of SAP HANA database can misuse HANA to execute commands with operating system "root" privileges.
Where can I find more information about CVE-2019-0357?
More information about CVE-2019-0357 can be found at the following references: [1] https://launchpad.support.sap.com/#/notes/2829681 [2] https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=525962506
- collector/nvd-index
- agent/event
- agent/severity
- agent/references
- agent/author
- agent/tags
- agent/description
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- vendor/sap
- canonical/sap hana
- version/sap hana/1.0
- version/sap hana/2.0