Threat Advisories - NVD Disclosed March 1, 2018

CVE-2018-2380

SAP CRM Path Traversal Vulnerability

Halo Surface Signal: 3 out of 5 — possibly public-facing.

SAP CRM systems allow attackers with high privileges to traverse directories, potentially leading to unauthorized access and modification of files. This poses a business risk to data confidentiality and system integrity.

NVD published: March 1, 2018 • CISA KEV