CVE-2018-2380 - SAP Customer Relationship Management (CRM) Path Traversal Vulnerability
Project:SAP
Product:Customer Relationship Management (CRM)
Date Added:2021-11-03Due Date:2022-05-03
Vulnerability Name
SAP Customer Relationship Management (CRM) Path Traversal Vulnerability
Description
SAP Customer Relationship Management (CRM) contains a path traversal vulnerability that allows an attacker to exploit insufficient validation of path information provided by users.
Known To Be Used in Ransomware Campaigns?
Known
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2018-2380