CVE-2019-0284

Severity CVSS v4.0:

Pending analysis

Type:

CWE-611 Improper Restriction of XML External Entity Reference ('XXE')

Publication date:

10/04/2019

Last modified:

11/04/2019

Description

SLD Registration in SAP HANA (fixed in versions 1.0, 2.0) does not sufficiently validate an XML document accepted from an untrusted source. The attacker can call SLDREG with an XML file containing a reference to an XML External Entity (XXE). This can cause SLDREG to, for example, continuously loop, read arbitrary files and even send local files.

Impact

Vector 3.x

CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H CVSS v3.1 Severity and Metrics:

Base Score: 6.00 MEDIUM
Vector: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H

Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): High
User Interaction (UI): None
Scope (S): Unchanged
Confidentiality (C): High
Integrity (I): None
Availability (A): High

Base Score 3.x

6.00

Severity 3.x

MEDIUM

Vector 2.0

AV:L/AC:L/Au:N/C:P/I:N/A:P CVSS v2.0 Severity and Metrics:

Base Score: 3.60 LOW
Vector: AV:L/AC:L/Au:N/C:P/I:N/A:P

Attack Vector (AV): Local
Attack Complexity (AC): Low
Authentication (Au): None
Confidentiality (C): Physical
Integrity (I): None
Availability (A): Physical