CVE-2018-2449 – SAP SRM MDM Catalog versions 3.73, 7.31, 7.32 in (SAP NetWeaver 7.3) – import functionalit …

0

Vuln ID: CVE-2018-2449

Published:  2018-08-14  16:29:01Z

Description: SAP SRM MDM Catalog versions 3.73, 7.31, 7.32 in (SAP NetWeaver 7.3) – import functionality does not perform authentication checks for valid repository user. This is an unauthenticated functionality that you can use on windows machines to do SMB relaying.

Source: NVD.NIST.GOV