Rewterz Threat Advisory – CVE-2019-9489 Trend Micro OfficeScan XG Data Manipulation Vulnerability
April 10, 2019Rewterz Threat Alert – Chase Business Themed Phishing Campaign – IoCs
April 10, 2019Rewterz Threat Advisory – CVE-2019-9489 Trend Micro OfficeScan XG Data Manipulation Vulnerability
April 10, 2019Rewterz Threat Alert – Chase Business Themed Phishing Campaign – IoCs
April 10, 2019Severity
Medium
Analysis Summary
1) An error related to the Adapter Engine can be exploited to spoof Digital Signature.
2) An error related to the Runtime Workbench can be exploited to disclose certain information.
3) An error related to the Messaging System can be exploited to disclose certain information.
Impact
- Exposure of sensitive information
- Spoofing
Affected Vendors
SAP
Affected Products
- SAP NetWeaver Process Integration 750
- SAP NetWeaver Process Integration 740
- SAP NetWeaver Process Integration 731
- SAP NetWeaver Process Integration 730
- SAP NetWeaver Process Integration 711
- SAP NetWeaver Process Integration 710
Remediation
Apply SAP Security Note 2742758.