1. CVE-Search
  2. CVE-2019-0365
ID CVE-2019-0365
Summary SAP Kernel (RFC), KRNL32NUC, KRNL32UC and KRNL64NUC before versions 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64UC, before versions 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, 7.73 and KERNEL before versions 7.21, 7.49, 7.53, 7.73, 7.76 SAP GUI for Windows (BC-FES-GUI) before versions 7.5, 7.6, and SAP GUI for Java (BC-FES-JAV) before version 7.5, allow an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service.
References
Vulnerable Configurations
  • cpe:2.3:a:sap:sap_kernel:7.21:*:*:*:*:*:*:*
    cpe:2.3:a:sap:sap_kernel:7.21:*:*:*:*:*:*:*
  • cpe:2.3:a:sap:sap_kernel:7.49:*:*:*:*:*:*:*
    cpe:2.3:a:sap:sap_kernel:7.49:*:*:*:*:*:*:*
  • cpe:2.3:a:sap:sap_kernel:7.53:*:*:*:*:*:*:*
    cpe:2.3:a:sap:sap_kernel:7.53:*:*:*:*:*:*:*
  • cpe:2.3:a:sap:sap_kernel:7.73:*:*:*:*:*:*:*
    cpe:2.3:a:sap:sap_kernel:7.73:*:*:*:*:*:*:*
  • cpe:2.3:a:sap:sap_kernel:7.76:*:*:*:*:*:*:*
    cpe:2.3:a:sap:sap_kernel:7.76:*:*:*:*:*:*:*
  • cpe:2.3:a:sap:sap_kernel_krnl32nuc:7.21:*:*:*:*:*:*:*
    cpe:2.3:a:sap:sap_kernel_krnl32nuc:7.21:*:*:*:*:*:*:*
  • cpe:2.3:a:sap:sap_kernel_krnl32nuc:7.21ext:*:*:*:*:*:*:*
    cpe:2.3:a:sap:sap_kernel_krnl32nuc:7.21ext:*:*:*:*:*:*:*
  • cpe:2.3:a:sap:sap_kernel_krnl32nuc:7.22:*:*:*:*:*:*:*
    cpe:2.3:a:sap:sap_kernel_krnl32nuc:7.22:*:*:*:*:*:*:*
  • cpe:2.3:a:sap:sap_kernel_krnl32nuc:7.22ext:*:*:*:*:*:*:*
    cpe:2.3:a:sap:sap_kernel_krnl32nuc:7.22ext:*:*:*:*:*:*:*
  • cpe:2.3:a:sap:sap_kernel_krnl32uc:7.21:*:*:*:*:*:*:*
    cpe:2.3:a:sap:sap_kernel_krnl32uc:7.21:*:*:*:*:*:*:*
  • cpe:2.3:a:sap:sap_kernel_krnl32uc:7.21ext:*:*:*:*:*:*:*
    cpe:2.3:a:sap:sap_kernel_krnl32uc:7.21ext:*:*:*:*:*:*:*
  • cpe:2.3:a:sap:sap_kernel_krnl32uc:7.22:*:*:*:*:*:*:*
    cpe:2.3:a:sap:sap_kernel_krnl32uc:7.22:*:*:*:*:*:*:*
  • cpe:2.3:a:sap:sap_kernel_krnl32uc:7.22ext:*:*:*:*:*:*:*
    cpe:2.3:a:sap:sap_kernel_krnl32uc:7.22ext:*:*:*:*:*:*:*
  • cpe:2.3:a:sap:sap_kernel_krnl64nuc:7.21:*:*:*:*:*:*:*
    cpe:2.3:a:sap:sap_kernel_krnl64nuc:7.21:*:*:*:*:*:*:*
  • cpe:2.3:a:sap:sap_kernel_krnl64nuc:7.21ext:*:*:*:*:*:*:*
    cpe:2.3:a:sap:sap_kernel_krnl64nuc:7.21ext:*:*:*:*:*:*:*
  • cpe:2.3:a:sap:sap_kernel_krnl64nuc:7.22:*:*:*:*:*:*:*
    cpe:2.3:a:sap:sap_kernel_krnl64nuc:7.22:*:*:*:*:*:*:*
  • cpe:2.3:a:sap:sap_kernel_krnl64nuc:7.22ext:*:*:*:*:*:*:*
    cpe:2.3:a:sap:sap_kernel_krnl64nuc:7.22ext:*:*:*:*:*:*:*
  • cpe:2.3:a:sap:sap_kernel_krnl64uc:7.21:*:*:*:*:*:*:*
    cpe:2.3:a:sap:sap_kernel_krnl64uc:7.21:*:*:*:*:*:*:*
  • cpe:2.3:a:sap:sap_kernel_krnl64uc:7.21ext:*:*:*:*:*:*:*
    cpe:2.3:a:sap:sap_kernel_krnl64uc:7.21ext:*:*:*:*:*:*:*
  • cpe:2.3:a:sap:sap_kernel_krnl64uc:7.22:*:*:*:*:*:*:*
    cpe:2.3:a:sap:sap_kernel_krnl64uc:7.22:*:*:*:*:*:*:*
  • cpe:2.3:a:sap:sap_kernel_krnl64uc:7.22ext:*:*:*:*:*:*:*
    cpe:2.3:a:sap:sap_kernel_krnl64uc:7.22ext:*:*:*:*:*:*:*
  • cpe:2.3:a:sap:sap_kernel_krnl64uc:7.49:*:*:*:*:*:*:*
    cpe:2.3:a:sap:sap_kernel_krnl64uc:7.49:*:*:*:*:*:*:*
  • cpe:2.3:a:sap:sap_kernel_krnl64uc:7.73:*:*:*:*:*:*:*
    cpe:2.3:a:sap:sap_kernel_krnl64uc:7.73:*:*:*:*:*:*:*
CVSS
Base: 7.8 (as of 24-08-2020 - 17:37)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE COMPLETE
cvss-vector via4 AV:N/AC:L/Au:N/C:N/I:N/A:C
refmap via4
confirm https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=525962506
misc https://launchpad.support.sap.com/#/notes/2786151
Last major update 24-08-2020 - 17:37
Published 10-09-2019 - 17:15
Last modified 24-08-2020 - 17:37
Back to Top