SAP Gateway Content Injection Vulnerability

SAP Gateway Content Injection Vulnerability

CVE-2019-0319 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

The SAP Gateway, versions 7.5, 7.51, 7.52 and 7.53, allows an attacker to inject content which is displayed in the form of an error message. An attacker could thus mislead a user to believe this information is from the legitimate service when it's not.

Learn more about our User Device Pen Test.