CVE-2019-0365

{"id": "CVE-2019-0365", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 6.9, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2019-09-10T17:15:11.330", "references": [{"url": "https://launchpad.support.sap.com/#/notes/2786151", "tags": ["Permissions Required", "Vendor Advisory"], "source": "cna@sap.com"}, {"url": "https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=525962506", "tags": ["Vendor Advisory"], "source": "cna@sap.com"}, {"url": "https://launchpad.support.sap.com/#/notes/2786151", "tags": ["Permissions Required", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=525962506", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "SAP Kernel (RFC), KRNL32NUC, KRNL32UC and KRNL64NUC before versions 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64UC, before versions 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, 7.73 and KERNEL before versions 7.21, 7.49, 7.53, 7.73, 7.76 SAP GUI for Windows (BC-FES-GUI) before versions 7.5, 7.6, and SAP GUI for Java (BC-FES-JAV) before version 7.5, allow an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service."}, {"lang": "es", "value": "SAP Kernel (RFC), KRNL32NUC, KRNL32UC y KRNL64NUC versiones anteriores a 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64UC, versiones anteriores a 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, 7.73 y KERNEL versiones anteriores a 7.21, 7.49, 7.53, 7.73, 7.76 SAP GUI for Windows (BC-FES-GUI) versiones anteriores a 7.5, 7.6 y SAP GUI para Java (BC-FES-JAV) anteriores a versi\u00f3n 7.5, permiten a un atacante impedir que usuarios leg\u00edtimos accedan a un servicio, ya sea mediante el bloqueo o la inundaci\u00f3n del servicio."}], "lastModified": "2024-11-21T04:16:44.830", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:sap:sap_kernel:7.21:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B1DB2B37-EC52-4FE6-9861-A98A9E365B61"}, {"criteria": "cpe:2.3:a:sap:sap_kernel:7.49:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "018F8061-43B6-4F29-B914-C779569C58CD"}, {"criteria": "cpe:2.3:a:sap:sap_kernel:7.53:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5F7EA62C-67A6-4971-AC33-D5A3D390CE52"}, {"criteria": "cpe:2.3:a:sap:sap_kernel:7.73:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C2DC3DD5-36D6-462E-BD41-E1EDB5843A8A"}, {"criteria": "cpe:2.3:a:sap:sap_kernel:7.76:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CDE0BD24-5846-4C18-BC80-3C20C10DBCB1"}, {"criteria": "cpe:2.3:a:sap:sap_kernel_krnl32nuc:7.21:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B7D3942B-2628-4DBE-A45E-BB0B7720611F"}, {"criteria": "cpe:2.3:a:sap:sap_kernel_krnl32nuc:7.21ext:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "453954CC-8BC4-44FA-B398-EEFB9E753219"}, {"criteria": "cpe:2.3:a:sap:sap_kernel_krnl32nuc:7.22:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "07F567A3-D352-45CC-9FD9-A527C00AC829"}, {"criteria": "cpe:2.3:a:sap:sap_kernel_krnl32nuc:7.22ext:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7E606FEC-E678-470A-8CFF-EA23A7B18E37"}, {"criteria": "cpe:2.3:a:sap:sap_kernel_krnl32uc:7.21:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A9F36AED-EBEC-4829-BE19-4C21A42A8333"}, {"criteria": "cpe:2.3:a:sap:sap_kernel_krnl32uc:7.21ext:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A4BA2FE6-9AAC-421F-80F1-C1A10F7412AF"}, {"criteria": "cpe:2.3:a:sap:sap_kernel_krnl32uc:7.22:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ECE57B68-EB51-4FA3-9E1B-6F2F5ABEBA90"}, {"criteria": "cpe:2.3:a:sap:sap_kernel_krnl32uc:7.22ext:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9B30BF5A-F8C3-42FE-A6F3-26AE4AFCE1C5"}, {"criteria": "cpe:2.3:a:sap:sap_kernel_krnl64nuc:7.21:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "55056F3E-ADB1-4C8A-B26B-635647BC62FF"}, {"criteria": "cpe:2.3:a:sap:sap_kernel_krnl64nuc:7.21ext:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C799F460-05EF-4639-80FF-FD46A44FE225"}, {"criteria": "cpe:2.3:a:sap:sap_kernel_krnl64nuc:7.22:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BED67005-0801-4F04-9657-EBEC88ABB5A2"}, {"criteria": "cpe:2.3:a:sap:sap_kernel_krnl64nuc:7.22ext:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "397FD4D5-A263-4366-A39F-20BECC22AB35"}, {"criteria": "cpe:2.3:a:sap:sap_kernel_krnl64uc:7.21:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8B8F057A-C567-488B-9C04-0E40B0C97954"}, {"criteria": "cpe:2.3:a:sap:sap_kernel_krnl64uc:7.21ext:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "68A9472A-A1E8-487C-B0C2-0F61D48C3766"}, {"criteria": "cpe:2.3:a:sap:sap_kernel_krnl64uc:7.22:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DE184F25-627E-4C8A-98D2-2EB0E9D2D96F"}, {"criteria": "cpe:2.3:a:sap:sap_kernel_krnl64uc:7.22ext:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A0BE71FB-A9E3-4CEC-A3B4-98B11DCD6B7A"}, {"criteria": "cpe:2.3:a:sap:sap_kernel_krnl64uc:7.49:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8952A720-B281-4265-B659-4DEE5F0BD257"}, {"criteria": "cpe:2.3:a:sap:sap_kernel_krnl64uc:7.73:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "709E6F88-14EA-4669-AEA5-C9C699428733"}], "operator": "OR"}]}], "sourceIdentifier": "cna@sap.com"}