Sensitive Database Information Disclosure in SAP Crystal Reports for Visual Studio

Sensitive Database Information Disclosure in SAP Crystal Reports for Visual Studio

CVE-2019-0285 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The .NET SDK WebForm Viewer in SAP Crystal Reports for Visual Studio (fixed in version 2010) discloses sensitive database information including credentials which can be misused by the attacker.

Learn more about our Web App Pen Testing.