Privilege Escalation in RFC Destination Access

Privilege Escalation in RFC Destination Access

CVE-2019-0293 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

Read of RFC destination does not always perform necessary authorization checks, resulting in escalation of privileges to access information on RFC destinations on managed systems and SAP Solution Manager system (ST-PI, before versions 2008_1_700, 2008_1_710, and 740).

Learn more about our Web Application Penetration Testing UK.