CVE-2019-0350
HIGHSAP HANA Database 1.0, 2.0 - Unauthenticated Denial of Service via Malformed Connection Request
Title source: llmDescription
SAP HANA Database, versions 1.0, 2.0, allows an unauthorized attacker to send a malformed connection request, which crashes the indexserver of an SAP HANA instance, leading to Denial of Service
References (2)
Core 2
Core References
Vendor Advisory x_refsource_misc
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=523998017
Permissions Required x_refsource_misc
https://launchpad.support.sap.com/#/notes/2798243
Scores
CVSS v3
7.5
EPSS
0.0054
EPSS Percentile
67.7%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
Status
published
Products (2)
sap/hana_database
1.00
sap/hana_database
2.00
Published
Nov 04, 2019
Tracked Since
Feb 18, 2026