cvedb.io
CVE-2019-0255
HIGH · CVSS 8.1
EPSS exploitation probability: 0%
Published 2019-02-15T18:29:00.600 · Last modified 2026-06-17T02:08:05.037

Summary

SAP NetWeaver AS ABAP Platform, Krnl64nuc 7.74, krnl64UC 7.73, 7.74, Kernel 7.73, 7.74, 7.75, fails to validate type of installation for an ABAP Server system correctly. That behavior may lead to situation, where business user achieves access to the full SAP Menu, that is 'Easy Access Menu'. The situation can be misused by any user to leverage privileges to business functionality.

Affected products

sap — advanced_business_application_programming_platform_kernel

Does this affect you?

Add your gear to cvedb and we'll alert you only when sap ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.