Insecure Logging of Keystore Password in SAP HANA Extended Application Services, 1.0

Insecure Logging of Keystore Password in SAP HANA Extended Application Services, 1.0

CVE-2018-2372 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

A plain keystore password is written to a system log file in SAP HANA Extended Application Services, 1.0, which could endanger confidentiality of SSL communication.

Learn more about our Web Application Penetration Testing UK.