Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The XS engine in SAP HANA allows remote attackers to spoof log entries in trace files and consequently cause a denial of service (disk consumption and process crash) via a crafted HTTP request, related to an unspecified debug function, aka SAP Security Note 2241978.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SAP HANA XS引擎安全漏洞
Vulnerability Description
SAP HANA是德国思爱普(SAP)公司的一套高性能的实时数据分析平台。该平台提供数据查询功能,用户可直接对大量实时业务数据进行查询和分析。XS engine(hdbxsengine)是一个基于HANA的扩展应用服务引擎。 SAP HANA的XS引擎中存在安全漏洞。远程攻击者可通过发送特制的HTTP请求利用该漏洞伪造跟踪文件中的日志项,造成拒绝服务(磁盘资源消耗和进程崩溃)。
CVSS Information
N/A
Vulnerability Type
N/A