cnvd - cnvd-2019-04899

CNVD-2019-04899

Vulnerability from cnvd - Published: 2019-02-21

Title

SAP Fiori Client代码执行漏洞（CNVD-2019-04899）

Description

SAP Fiori Client是德国思爱普（SAP）公司的一款用于在移动设备上运行SAP Fiori启动板的客户端程序。 SAP Fiori Client中存在代码执行漏洞，攻击者可借助恶意的应用程序利用该漏洞在SAP Fiori应用程序中执行JavaScript代码，包括读取和写入信息并调用设备的JavaScript API。

Severity

中

Patch Name

SAP Fiori Client代码执行漏洞（CNVD-2019-04899）的补丁

Patch Description

Formal description

厂商已发布了漏洞修复程序，请及时关注更新： https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=503809832

Reference

http://www.securityfocus.com/bid/105911

Impacted products

Name
SAP Fiori Client 无

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-2485"
    }
  },
  "description": "SAP Fiori Client\u662f\u5fb7\u56fd\u601d\u7231\u666e\uff08SAP\uff09\u516c\u53f8\u7684\u4e00\u6b3e\u7528\u4e8e\u5728\u79fb\u52a8\u8bbe\u5907\u4e0a\u8fd0\u884cSAP Fiori\u542f\u52a8\u677f\u7684\u5ba2\u6237\u7aef\u7a0b\u5e8f\u3002\n\nSAP Fiori Client\u4e2d\u5b58\u5728\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u501f\u52a9\u6076\u610f\u7684\u5e94\u7528\u7a0b\u5e8f\u5229\u7528\u8be5\u6f0f\u6d1e\u5728SAP Fiori\u5e94\u7528\u7a0b\u5e8f\u4e2d\u6267\u884cJavaScript\u4ee3\u7801\uff0c\u5305\u62ec\u8bfb\u53d6\u548c\u5199\u5165\u4fe1\u606f\u5e76\u8c03\u7528\u8bbe\u5907\u7684JavaScript API\u3002",
  "discovererName": "SAP",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=503809832",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2019-04899",
  "openTime": "2019-02-21",
  "patchDescription": "SAP Fiori Client\u662f\u5fb7\u56fd\u601d\u7231\u666e\uff08SAP\uff09\u516c\u53f8\u7684\u4e00\u6b3e\u7528\u4e8e\u5728\u79fb\u52a8\u8bbe\u5907\u4e0a\u8fd0\u884cSAP Fiori\u542f\u52a8\u677f\u7684\u5ba2\u6237\u7aef\u7a0b\u5e8f\u3002\r\n\r\nSAP Fiori Client\u4e2d\u5b58\u5728\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u501f\u52a9\u6076\u610f\u7684\u5e94\u7528\u7a0b\u5e8f\u5229\u7528\u8be5\u6f0f\u6d1e\u5728SAP Fiori\u5e94\u7528\u7a0b\u5e8f\u4e2d\u6267\u884cJavaScript\u4ee3\u7801\uff0c\u5305\u62ec\u8bfb\u53d6\u548c\u5199\u5165\u4fe1\u606f\u5e76\u8c03\u7528\u8bbe\u5907\u7684JavaScript API\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "SAP Fiori Client\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\uff08CNVD-2019-04899\uff09\u7684\u8865\u4e01",
  "products": {
    "product": "SAP Fiori Client \u65e0"
  },
  "referenceLink": "http://www.securityfocus.com/bid/105911",
  "serverity": "\u4e2d",
  "submitTime": "2018-11-16",
  "title": "SAP Fiori Client\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\uff08CNVD-2019-04899\uff09"
}

CVE-2018-2485 (GCVE-0-2018-2485)

Vulnerability from cvelistv5 – Published: 2018-11-13 20:00 – Updated: 2024-08-05 04:21

Summary

It is possible for a malicious application or malware to execute JavaScript in a SAP Fiori application. This can include reading and writing of information and calling device specific JavaScript APIs in the application. SAP Fiori Client version 1.11.5 in Google Play store addresses these issues and users must update to that version.

Severity ?

No CVSS data available.

CWE

Code Injection

Assigner

sap

References

URL

Tags

	http://www.securityfocus.com/bid/105911	vdb-entryx_refsource_BID
	https://launchpad.support.sap.com/#/notes/2691126	x_refsource_MISC
	https://wiki.scn.sap.com/wiki/pages/viewpage.acti…	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	SAP	SAP Fiori Client	Affected: < 1.11.5

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T04:21:34.103Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "105911",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/105911"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://launchpad.support.sap.com/#/notes/2691126"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=503809832"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "SAP Fiori Client",
          "vendor": "SAP",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c 1.11.5"
            }
          ]
        }
      ],
      "datePublic": "2018-11-13T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "It is possible for a malicious application or malware to execute JavaScript in a SAP Fiori application. This can include reading and writing of information and calling device specific JavaScript APIs in the application. SAP Fiori Client version 1.11.5 in Google Play store addresses these issues and users must update to that version."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Code Injection",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-11-14T10:57:02",
        "orgId": "e4686d1a-f260-4930-ac4c-2f5c992778dd",
        "shortName": "sap"
      },
      "references": [
        {
          "name": "105911",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/105911"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://launchpad.support.sap.com/#/notes/2691126"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=503809832"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cna@sap.com",
          "ID": "CVE-2018-2485",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "SAP Fiori Client",
                      "version": {
                        "version_data": [
                          {
                            "version_name": "\u003c",
                            "version_value": "1.11.5"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "SAP"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "It is possible for a malicious application or malware to execute JavaScript in a SAP Fiori application. This can include reading and writing of information and calling device specific JavaScript APIs in the application. SAP Fiori Client version 1.11.5 in Google Play store addresses these issues and users must update to that version."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Code Injection"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "105911",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/105911"
            },
            {
              "name": "https://launchpad.support.sap.com/#/notes/2691126",
              "refsource": "MISC",
              "url": "https://launchpad.support.sap.com/#/notes/2691126"
            },
            {
              "name": "https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=503809832",
              "refsource": "MISC",
              "url": "https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=503809832"
            }
          ]
        },
        "source": {
          "discovery": "UNKNOWN"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "e4686d1a-f260-4930-ac4c-2f5c992778dd",
    "assignerShortName": "sap",
    "cveId": "CVE-2018-2485",
    "datePublished": "2018-11-13T20:00:00",
    "dateReserved": "2017-12-15T00:00:00",
    "dateUpdated": "2024-08-05T04:21:34.103Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2019-04899

CVE-2018-2485 (GCVE-0-2018-2485)

Tags

Sightings

Nomenclature