CVE-2019-0379

SAP Process Integration, business-to-business add-on, versions 1.0, 2.0, does not perform authentication check properly when the default security provider is changed to BouncyCastle (BC), leading to Missing Authentication Check

Published : 2019-10-08 20:15 Updated : 2019-10-15 15:40

5.0
CVSS Score More info
Score 5.0 / 10
5.0
Vendor Product Version URI
Sap Process Integration 1.0 cpe:/a:sap:process_integration:1.0
Sap Process Integration 2.0 cpe:/a:sap:process_integration:2.0
  1. Sap (1) Search CVE
    1. Process Integration (2) Search CVE
      1. 1.0
      2. 2.0

CWE

ID Name Description Links
CWE-345 Insufficient Verification of Data Authenticity The software does not sufficiently verify the origin or authenticity of data, in a way that causes it to accept invalid data. CVE

History of changes

Date Event
2019-10-15 15:40
2019-10-11 17:15
2019-10-08 20:30

New CVE