Password Hash Disclosure Vulnerability in SAP Financial Consolidation Cube Designer

Password Hash Disclosure Vulnerability in SAP Financial Consolidation Cube Designer

CVE-2018-2499 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

A security weakness in SAP Financial Consolidation Cube Designer (BOBJ_EADES fixed in versions 8.0, 10.1) may allow an attacker to discover the password hash of an admin user.

Learn more about our User Device Pen Test.